LeakIX - Host 75.2.60.68

Host 75.2.60.68

United States

AMAZON-AES

Ruby/2.7.1/2020-03-31

Software information

Cowboy

tcp/443 tcp/80

Heroku

tcp/443 tcp/80

heroku-router

tcp/80

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 35.71.179.82
Domain: dev-api4.ausmit.in
Port: 80
URL: http://dev-api4.ausmit.in

First seen 2025-12-09 19:42
Last seen 2026-01-13 00:45
Open for 34 days

Severity: info
Fingerprint: 5733ddf49ff49cd1a8bcc6e5ad08a4921d78119b51e54dc75fea61f088b2fccb

Public Swagger UI/API detected at path: /webjars/swagger-ui/index.html - sample paths:
GET /analytics/api/v1/audit/status-counts/campaign/{campaignId}
GET /analytics/api/v1/fileService/downloadProductPdf/{uniqueCode}
GET /analytics/api/v1/fileService/fileStatus/{messageId}
GET /api/v1/metal-price/getAllMetalPrice
GET /api/v1/metal-price/search
GET /brand/analytics/api/v1/audit/status-counts/campaign/{campaignId}
GET /brand/api/v1/detail/{brandId}
GET /brand/api/v1/getAccess
GET /brand/api/v1/getBrandIds/{brandType}
GET /brand/api/v1/isApproved/{brandId}
GET /brand/api/v1/list/details
GET /brand/item/file/api/v1/itemUploadQueueStatus
GET /brand/items-type/api/v1/{id}
GET /brand/items/api/v1/detail/{itemId}
GET /brand/items/api/v1/details
GET /brand/items/api/v1/{itemCode}
GET /brand/items/cart/api/v1/getCartData
GET /brand/items/variation/api/v1/{id}
GET /brand/items/variation/api/v1/{id}/pricing
GET /brand/product/api/v1
GET /brand/product/api/v1/aggregate/getFilterTypes
GET /brand/product/api/v1/getAllItem
GET /brand/product/api/v1/getBrandCatalogueTypeConfig
GET /brand/product/api/v1/getItem/{productId}
GET /brand/product/api/v1/getItemByName/{uniqueName}
GET /brand/product/api/v1/getItemByUniqueCode/{uniqueCode}
GET /brand/product/api/v1/getItemDetailByUniqueCode/{uniqueCode}
GET /brand/stores/api/v1/details
GET /customers/api/v1/appointment/get/{appointmentId}
GET /customers/api/v1/appointment/getAll
GET /customers/api/v1/appointment/search
GET /customers/api/v1/appointment/store/{storeId}
GET /customers/api/v1/appointment/user/{userId}
GET /customers/api/v1/chat/assets/proxy
GET /customers/api/v1/chat/assets/subprocess/aggregate-count
GET /customers/api/v1/chat/assets/{assetId}
GET /customers/api/v1/chat/assets/{assetId}/hierarchy
GET /customers/api/v1/chat/conversations/{conversationId}
GET /customers/api/v1/chat/conversations/{conversationId}/messages/poll
GET /customers/api/v1/chat/conversations/{conversationId}/messages/{messageId}
GET /customers/api/v1/chat/conversations/{conversationId}/stream
GET /login/api/v1
GET /login/api/v1/auth/logout
GET /login/api/v1/public-key
GET /login/api/v1/verify-registration
GET /notification/api/v1/campaign/creator/{createdBy}
GET /notification/api/v1/campaign/scheduled
GET /notification/api/v1/campaign/status/{status}
GET /notification/api/v1/campaign/{campaignId}
GET /notification/api/v1/template/fetch-pre-approved-templates
GET /order/api/v1/merchant/getMerchantTransactionTotalAmount/{merchantId}
GET /order/api/v1/merchant/{merchantId}
GET /order/api/v1/purchase-manager/pending-requests
GET /order/api/v1/quotations/download-quotation/{id}
GET /payments/commission/{brandId}
GET /payments/options/active
GET /payments/options/all
GET /payments/options/response
GET /payments/order/api/v1/items/transactions/getItemTransaction/{id}
GET /subscription/api/v1/brand
GET /subscription/api/v1/brand/credits/balance
GET /subscription/api/v1/brand/{brandId}
GET /subscription/api/v1/plan/{id}
GET /user/api/v1/address/get/{addressId}
GET /user/api/v1/address/list
GET /user/api/v1/address/list/shipping
GET /user/api/v1/address/migrateAddressData
GET /user/api/v1/approve/{userId}
GET /user/api/v1/facebook/auth/callback
GET /user/api/v1/facebook/data-deletion-status/{code}
GET /user/api/v1/facebook/hasValidToken
GET /user/api/v1/facebook/insights/sync
GET /user/api/v1/getAdminUsers
GET /user/api/v1/getUsersByBrandId
GET /user/api/v1/list
GET /user/api/v1/messages
GET /user/api/v1/messages/{id}
GET /user/api/v1/reject/{userId}
GET /user/api/v1/{userId}
POST /analytics/api/v1/audit/list
POST /analytics/api/v1/audit/update/clicked/{notificationId}
POST /analytics/api/v1/audit/update/delivered/{notificationId}
POST /analytics/api/v1/audit/update/read/{notificationId}
POST /analytics/api/v1/audit/wati/webhook/status
POST /analytics/api/v1/fileService/campaign/generateFile
POST /analytics/api/v1/fileService/download/{processType}
POST /analytics/api/v1/fileService/extractData
POST /analytics/api/v1/fileService/upload/{processType}
POST /analytics/api/v1/jeweller/gem-ai/summary
POST /analytics/api/v1/jeweller/item/summary
POST /analytics/api/v1/jeweller/order/summary
POST /analytics/api/v1/jeweller/overall/summary
POST /analytics/api/v1/jeweller/report
POST /analytics/api/v1/jeweller/report/{dateRange}
POST /analytics/api/v1/jeweller/request/summary
POST /analytics/api/v1/whatsapp/messageReceiver/wati/webhook/message
POST /api/v1/metal-price/addPrice
POST /api/v1/metal-price/filters
POST /api/v1/metal-price/updatePrice/{id}
POST /brand/analytics/api/v1/audit/list
POST /brand/analytics/api/v1/audit/update/clicked/{notificationId}
POST /brand/analytics/api/v1/audit/update/delivered/{notificationId}
POST /brand/analytics/api/v1/audit/update/read/{notificationId}
POST /brand/analytics/api/v1/audit/wati/webhook/status
POST /brand/analytics/api/v1/whatsapp/messageReceiver/wati/webhook/message
POST /brand/api/v1/add
POST /brand/api/v1/addClientToOwner
POST /brand/api/v1/approveBrand/{brandId}
POST /brand/api/v1/filters
POST /brand/api/v1/filters/client
POST /brand/api/v1/getAllClients
POST /brand/api/v1/rejectBrand/{brandId}
POST /brand/api/v1/removeClientFromOwner
POST /brand/api/v1/toggle-status/{brandId}/{action}
POST /brand/api/v1/update
POST /brand/api/v1/updateImage
POST /brand/api/v1/updateImageResize
POST /brand/api/v1/{brandId}/upload-image
POST /brand/banner/api/v1/filters
POST /brand/catalogueRequest/api/v1/approveOrRejectItemViewRequest
POST /brand/catalogueRequest/api/v1/createCatalogueRequest
POST /brand/catalogueRequest/api/v1/filters
POST /brand/catalogueRequest/api/v1/getApprovedItemRequests
POST /brand/item/file/api/v1/bulkItemUpload
POST /brand/item/file/api/v1/downloadItems
POST /brand/itemRequestType/api/v1/createItemRequestType
POST /brand/itemRequestType/api/v1/deleteItemRequestType/{id}
POST /brand/itemRequestType/api/v1/filters
POST /brand/itemRequestType/api/v1/updateItemRequestType/{id}
POST /brand/items-type/api/v1
POST /brand/items-type/api/v1/filters
POST /brand/items/api/v1/filters
POST /brand/items/api/v1/getAllApprovedItems
POST /brand/items/api/v1/getGlobalCatalogue
POST /brand/items/api/v1/update-status
POST /brand/items/cart/api/v1/addToCart
POST /brand/items/cart/api/v1/buyNow
POST /brand/items/cart/api/v1/deleteCart
POST /brand/items/cart/api/v1/payOnDelivery
POST /brand/items/cart/api/v1/removeFromCart/{variationId}
POST /brand/items/variation/api/v1/createItemVariationIfNotExists
POST /brand/items/variation/api/v1/delete/{id}
POST /brand/items/variation/api/v1/filters
POST /brand/items/variation/api/v1/getItemVariationByItemId
POST /brand/items/variation/api/v1/update
POST /brand/predefinedset/api/v1/createItemPreset
POST /brand/predefinedset/api/v1/deleteItemPreset/{id}
POST /brand/predefinedset/api/v1/filters
POST /brand/predefinedset/api/v1/updateItemPreset/{id}
POST /brand/product/api/v1/activate
POST /brand/product/api/v1/compareItems/filter
POST /brand/product/api/v1/create
POST /brand/product/api/v1/createBrandCatalogueTypeConfig
POST /brand/product/api/v1/deactivate
POST /brand/product/api/v1/delete
POST /brand/product/api/v1/edit-Image/{id}
POST /brand/product/api/v1/getCombinedDetails
POST /brand/product/api/v1/processItemsWithMissingUniqueCode
POST /brand/product/api/v1/productType/filters
POST /brand/product/api/v1/update/{productId}
POST /brand/product/api/v1/updateItemCodeByUniqueCode
POST /brand/product/api/v1/{id}/upload-image
POST /brand/stores/api/v1/add
POST /brand/stores/api/v1/delete/{id}
POST /brand/stores/api/v1/edit-Image/{id}
POST /brand/stores/api/v1/edit/{id}
POST /brand/stores/api/v1/filters
POST /brand/stores/api/v1/search
POST /brand/stores/api/v1/{id}/upload-image
POST /customers/api/v1/appointment/create
POST /customers/api/v1/appointment/update/status/{appointmentId}
POST /customers/api/v1/appointment/update/{appointmentId}
POST /customers/api/v1/appointment/{appointmentId}/approved
POST /customers/api/v1/appointment/{appointmentId}/cancel
POST /customers/api/v1/appointment/{appointmentId}/coupon/{couponAmount}
POST /customers/api/v1/appointment/{appointmentId}/delete
POST /customers/api/v1/appointment/{appointmentId}/redeemCoupon
POST /customers/api/v1/appointment/{appointmentId}/reschedule
POST /customers/api/v1/appointment/{appointmentId}/visited
POST /customers/api/v1/callback/chat/response
POST /customers/api/v1/chat/assets/filters
POST /customers/api/v1/chat/assets/like-dislike
POST /customers/api/v1/chat/conversations
POST /customers/api/v1/chat/conversations/cloneImage
POST /customers/api/v1/chat/conversations/filters
POST /customers/api/v1/chat/conversations/preSignedUrl
POST /customers/api/v1/chat/conversations/{conversationId}/edit
POST /customers/api/v1/chat/conversations/{conversationId}/history
POST /customers/api/v1/chat/conversations/{conversationId}/messages
POST /customers/api/v1/chat/messages/acknowledgment
POST /customers/api/v1/chat/messages/like-dislike
POST /customers/api/v1/chat/messages/sync-process
POST /customers/api/v1/chat/sse-token
POST /imageProcess/api/v1/qrAndBarCodeProcessor
POST /imageProcess/api/v1/resize
POST /login/api/v1/auth
POST /login/api/v1/auth/refreshToken
POST /login/api/v1/forgot-password
POST /login/api/v1/register
POST /login/api/v1/resend
POST /login/api/v1/reset-password
POST /login/api/v1/reset-password-with-token
POST /login/api/v1/switch-brand
POST /login/api/v1/verify
POST /login/api/v1/verify-reset-token
POST /notification/api/v1/campaign
POST /notification/api/v1/campaign/list
POST /notification/api/v1/campaign/{campaignId}/delete
POST /notification/api/v1/campaign/{campaignId}/execute
POST /notification/api/v1/campaign/{campaignId}/schedule
POST /notification/api/v1/campaign/{campaignId}/schedule/cancel
POST /notification/api/v1/campaign/{campaignId}/status
POST /notification/api/v1/getDownloadLink
POST /notification/api/v1/send
POST /notification/api/v1/sendSessionFile/{whatsappNumber}
POST /notification/api/v1/sendWhatsappNotification
POST /notification/api/v1/template/create
POST /notification/api/v1/template/delete/{templateCode}
POST /notification/api/v1/template/list
POST /notification/api/v1/template/update/{templateCode}
POST /order/api/v1/conversation/create
POST /order/api/v1/conversation/filters
POST /order/api/v1/conversation/get-upload-url
POST /order/api/v1/invoice/calculateInvoice
POST /order/api/v1/invoice/createCustomerInvoice
POST /order/api/v1/items/cancelItemOrder
POST /order/api/v1/items/cancelMerchantOrder
POST /order/api/v1/items/createCustomOrder
POST /order/api/v1/items/createItemOrder
POST /order/api/v1/items/createMerchantOrders
POST /order/api/v1/items/filters
POST /order/api/v1/items/find/{orderId}
POST /order/api/v1/items/getAllMerchantOrders
POST /order/api/v1/items/pickup
POST /order/api/v1/items/priceCustomOrder
POST /order/api/v1/items/schedulePickUp
POST /order/api/v1/items/schedulePickUpForManufacturer
POST /order/api/v1/items/{merchantOrderId}/update-status
POST /order/api/v1/items/{orderId}/update-payment-info
POST /order/api/v1/merchant/assert/getDownloadURL
POST /order/api/v1/merchant/getMerchantOrderTransactionDetails
POST /order/api/v1/merchant/merchantPayment
POST /order/api/v1/merchant/merchantSettlementPayment
POST /order/api/v1/merchant/transaction/history
POST /order/api/v1/merchant/updateCommissionRate
POST /order/api/v1/merchant/updateOrderPrice
POST /order/api/v1/merchant/updatePayment
POST /order/api/v1/merchant/updatePayment/status
POST /order/api/v1/merchant/upload-file
POST /order/api/v1/merchant/{id}/getUploadImageURL
POST /order/api/v1/purchase-manager/accept-quotation/{uniqueName}
POST /order/api/v1/purchase-manager/admin-approve-quotation
POST /order/api/v1/purchase-manager/assignManufacturers
POST /order/api/v1/purchase-manager/create
POST /order/api/v1/purchase-manager/details
POST /order/api/v1/purchase-manager/filters
POST /order/api/v1/purchase-manager/select-request
POST /order/api/v1/purchase-manager/share-quotation
POST /order/api/v1/purchase-manager/upload-url
POST /order/api/v1/quotations/calculate-quotation
POST /order/api/v1/quotations/create
POST /order/api/v1/quotations/filters
POST /order/api/v1/quotations/negotiate-quotation
POST /order/api/v1/quotations/submit-quote-to-retailer
POST /order/api/v1/quotations/update-item-variation
POST /order/api/v1/quotations/update-session-id
POST /order/api/v1/quotations/update-status
POST /payments/commission/commission-rate
POST /payments/options/getPaymentGatewayDetails
POST /payments/order/api/v1/items/transactions/createItemTransaction
POST /payments/order/api/v1/items/transactions/filters
POST /payments/order/api/v1/items/transactions/getAllOrderTransaction
POST /payments/order/api/v1/items/transactions/getItemTransactionList
POST /payments/order/api/v1/items/transactions/updateItemTransaction/updateStatus
POST /payments/webhook/phonepe
POST /subscription/api/v1/brand/credits/add
POST /subscription/api/v1/brand/credits/history
POST /subscription/api/v1/brand/credits/remove
POST /subscription/api/v1/enable-gem-ai
POST /subscription/api/v1/plan
POST /subscription/api/v1/plan/delete/{id}
POST /subscription/api/v1/plan/update/{id}
POST /subscription/api/v1/plans/filters
POST /subscription/api/v1/subscribe/brand
POST /user/api/v1/address
POST /user/api/v1/address/delete/{id}
POST /user/api/v1/address/getAddressListByIds
POST /user/api/v1/brand/register
POST /user/api/v1/employees/delete/{accessId}
POST /user/api/v1/employees/filters
POST /user/api/v1/employees/invite/{accessId}
POST /user/api/v1/employees/register
POST /user/api/v1/employees/updateProfile/{accessId}
POST /user/api/v1/employees/updateStatus/{accessId}
POST /user/api/v1/facebook/ausmit-data-deletion
POST /user/api/v1/facebook/connect
POST /user/api/v1/facebook/data-deletion
POST /user/api/v1/facebook/filters
POST /user/api/v1/facebook/page-status
POST /user/api/v1/facebook/post
POST /user/api/v1/filters
POST /user/api/v1/getUsersByBrandIdList
POST /user/api/v1/gst/details
POST /user/api/v1/messages/bulkSave
POST /user/api/v1/messages/create
POST /user/api/v1/messages/delete/{id}
POST /user/api/v1/messages/filters
POST /user/api/v1/messages/publish
POST /user/api/v1/messages/update/{id}
POST /user/api/v1/profile-image
POST /user/api/v1/search
POST /user/api/v1/temp-upload-image
POST /user/api/v1/updateFcmToken
POST /user/api/v1/updatePrimaryAddress/{userId}/{addressId}
POST /user/api/v1/updateTransaction/{userId}/{transactionId}

Found on 2026-01-13 00:45

Severity: info
Fingerprint: 5733ddf49ff49cd1926e27d0926e27d0926e27d0926e27d0926e27d0926e27d0
```
Public Swagger UI/API detected at path: /webjars/swagger-ui/index.html
```
Found on 2025-12-26 12:31

Create report

Finds vulnerable Vite development environment

ViteJS development environment found and vulnerable to CVE-2025-30208

IP: 75.2.60.68
Domain: savinggracencscheduler.com
Port: 443
URL: https://savinggracencscheduler.com

First seen 2025-05-17 01:46
Last seen 2026-01-12 21:33
Open for 240 days

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245b737ae2c3f28c8a3dc4b0833

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
VITE_BACKEND_API_ROOT=https://sheltercenter-api.com
npm_config_user_agent=npm/11.6.2 node/v24.12.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=21852
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=11.6.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=sheltercenter-frontend
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --host 0.0.0.0 --port $PORT
npm_package_version=0.0.0
npm_lifecycle_event=start
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=start
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2026-01-12 21:33

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245b737ae2c3f28c8a380ff2429

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
VITE_BACKEND_API_ROOT=https://sheltercenter-api.com
npm_config_user_agent=npm/11.6.2 node/v24.12.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=19934
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=11.6.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=sheltercenter-frontend
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --host 0.0.0.0 --port $PORT
npm_package_version=0.0.0
npm_lifecycle_event=start
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=start
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2026-01-11 21:14

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245b737ae2c3f28c8a3061523ec

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
VITE_BACKEND_API_ROOT=https://sheltercenter-api.com
npm_config_user_agent=npm/11.6.2 node/v24.12.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=50237
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=11.6.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=sheltercenter-frontend
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --host 0.0.0.0 --port $PORT
npm_package_version=0.0.0
npm_lifecycle_event=start
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=start
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2026-01-10 21:31

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245b737ae2c3f28c8a373202cf0

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
VITE_BACKEND_API_ROOT=https://sheltercenter-api.com
npm_config_user_agent=npm/11.6.2 node/v24.12.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=54318
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=11.6.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=sheltercenter-frontend
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --host 0.0.0.0 --port $PORT
npm_package_version=0.0.0
npm_lifecycle_event=start
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=start
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2026-01-09 21:26

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245b737ae2c3f28c8a36ca71877

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
VITE_BACKEND_API_ROOT=https://sheltercenter-api.com
npm_config_user_agent=npm/11.6.2 node/v24.12.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=4860
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=11.6.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=sheltercenter-frontend
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --host 0.0.0.0 --port $PORT
npm_package_version=0.0.0
npm_lifecycle_event=start
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=start
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2026-01-08 21:50

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245b737ae2c3f28c8a38026357e

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
VITE_BACKEND_API_ROOT=https://sheltercenter-api.com
npm_config_user_agent=npm/11.6.2 node/v24.12.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=50158
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=11.6.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=sheltercenter-frontend
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --host 0.0.0.0 --port $PORT
npm_package_version=0.0.0
npm_lifecycle_event=start
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=start
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2026-01-07 21:31

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245b737ae2c3f28c8a33302665b

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
VITE_BACKEND_API_ROOT=https://sheltercenter-api.com
npm_config_user_agent=npm/11.6.2 node/v24.12.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=45708
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=11.6.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=sheltercenter-frontend
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --host 0.0.0.0 --port $PORT
npm_package_version=0.0.0
npm_lifecycle_event=start
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=start
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2026-01-06 21:27

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245b737ae2c3f28c8a314fcf27c

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
VITE_BACKEND_API_ROOT=https://sheltercenter-api.com
npm_config_user_agent=npm/11.6.2 node/v24.12.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=15696
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=11.6.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=sheltercenter-frontend
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --host 0.0.0.0 --port $PORT
npm_package_version=0.0.0
npm_lifecycle_event=start
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=start
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2026-01-05 21:26

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245b737ae2c3f28c8a3a98906ce

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
VITE_BACKEND_API_ROOT=https://sheltercenter-api.com
npm_config_user_agent=npm/11.6.2 node/v24.12.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=28265
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=11.6.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=sheltercenter-frontend
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --host 0.0.0.0 --port $PORT
npm_package_version=0.0.0
npm_lifecycle_event=start
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=start
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2026-01-03 21:26

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245b737ae2c3f28c8a333e1d25e

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
VITE_BACKEND_API_ROOT=https://sheltercenter-api.com
npm_config_user_agent=npm/11.6.2 node/v24.12.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=48780
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=11.6.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=sheltercenter-frontend
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --host 0.0.0.0 --port $PORT
npm_package_version=0.0.0
npm_lifecycle_event=start
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=start
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2026-01-02 21:28

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245b737ae2c3f28c8a3eebc32f0

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
VITE_BACKEND_API_ROOT=https://sheltercenter-api.com
npm_config_user_agent=npm/11.6.2 node/v24.12.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=11586
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=11.6.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=sheltercenter-frontend
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --host 0.0.0.0 --port $PORT
npm_package_version=0.0.0
npm_lifecycle_event=start
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=start
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2026-01-01 21:17

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245b737ae2c3f28c8a3a914faf1

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
VITE_BACKEND_API_ROOT=https://sheltercenter-api.com
npm_config_user_agent=npm/11.6.2 node/v24.12.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=5551
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=11.6.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=sheltercenter-frontend
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --host 0.0.0.0 --port $PORT
npm_package_version=0.0.0
npm_lifecycle_event=start
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=start
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-12-31 21:34

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245b737ae2c3f28c8a3ed069832

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
VITE_BACKEND_API_ROOT=https://sheltercenter-api.com
npm_config_user_agent=npm/11.6.2 node/v24.12.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=55881
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=11.6.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=sheltercenter-frontend
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --host 0.0.0.0 --port $PORT
npm_package_version=0.0.0
npm_lifecycle_event=start
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=start
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-12-30 21:20

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245b737ae2c3f28c8a3a6b67d08

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
VITE_BACKEND_API_ROOT=https://sheltercenter-api.com
npm_config_user_agent=npm/11.6.2 node/v24.12.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=51414
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=11.6.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=sheltercenter-frontend
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --host 0.0.0.0 --port $PORT
npm_package_version=0.0.0
npm_lifecycle_event=start
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=start
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-12-27 06:46

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245b737ae2c3f28c8a35383bd31

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
VITE_BACKEND_API_ROOT=https://sheltercenter-api.com
npm_config_user_agent=npm/11.6.2 node/v24.12.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=51457
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=11.6.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=sheltercenter-frontend
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --host 0.0.0.0 --port $PORT
npm_package_version=0.0.0
npm_lifecycle_event=start
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=start
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-12-25 03:19

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245b737ae2c3f28c8a30d901af1

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
VITE_BACKEND_API_ROOT=https://sheltercenter-api.com
npm_config_user_agent=npm/11.6.2 node/v24.12.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=24332
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=11.6.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=sheltercenter-frontend
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --host 0.0.0.0 --port $PORT
npm_package_version=0.0.0
npm_lifecycle_event=start
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=start
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-12-23 01:45

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245b737ae2c3f28c8a38d9c717f

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
VITE_BACKEND_API_ROOT=https://sheltercenter-api.com
npm_config_user_agent=npm/11.6.2 node/v24.12.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=28499
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=11.6.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=sheltercenter-frontend
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --host 0.0.0.0 --port $PORT
npm_package_version=0.0.0
npm_lifecycle_event=start
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=start
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-12-20 10:45

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245b737ae2c3f28c8a35a22c25c

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
VITE_BACKEND_API_ROOT=https://sheltercenter-api.com
npm_config_user_agent=npm/11.6.2 node/v24.12.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=12015
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=11.6.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=sheltercenter-frontend
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --host 0.0.0.0 --port $PORT
npm_package_version=0.0.0
npm_lifecycle_event=start
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=start
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-12-19 10:39

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245b737ae2c0322da63305d65ab

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
VITE_BACKEND_API_ROOT=https://sheltercenter-api.com
npm_config_user_agent=npm/10.9.2 node/v22.17.1 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=16122
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=sheltercenter-frontend
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --host 0.0.0.0 --port $PORT
npm_package_version=0.0.0
npm_lifecycle_event=start
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=start
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-12-17 02:21

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245b737ae2c0322da63c16e614a

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
VITE_BACKEND_API_ROOT=https://sheltercenter-api.com
npm_config_user_agent=npm/10.9.2 node/v22.17.1 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=25206
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=sheltercenter-frontend
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --host 0.0.0.0 --port $PORT
npm_package_version=0.0.0
npm_lifecycle_event=start
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=start
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-12-13 14:01

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245b737ae2c0322da633a29dec3

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
VITE_BACKEND_API_ROOT=https://sheltercenter-api.com
npm_config_user_agent=npm/10.9.2 node/v22.17.1 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=45889
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=sheltercenter-frontend
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --host 0.0.0.0 --port $PORT
npm_package_version=0.0.0
npm_lifecycle_event=start
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=start
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-12-11 13:42

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245b737ae2c0322da635dfadfdf

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
VITE_BACKEND_API_ROOT=https://sheltercenter-api.com
npm_config_user_agent=npm/10.9.2 node/v22.17.1 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=17464
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=sheltercenter-frontend
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --host 0.0.0.0 --port $PORT
npm_package_version=0.0.0
npm_lifecycle_event=start
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=start
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-12-01 04:25

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245b737ae2c0322da63e76e0580

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
VITE_BACKEND_API_ROOT=https://sheltercenter-api.com
npm_config_user_agent=npm/10.9.2 node/v22.17.1 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=33225
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=sheltercenter-frontend
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --host 0.0.0.0 --port $PORT
npm_package_version=0.0.0
npm_lifecycle_event=start
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=start
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-11-28 09:59

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245b737ae2c0322da63079ac98c

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
VITE_BACKEND_API_ROOT=https://sheltercenter-api.com
npm_config_user_agent=npm/10.9.2 node/v22.17.1 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=38813
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=sheltercenter-frontend
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --host 0.0.0.0 --port $PORT
npm_package_version=0.0.0
npm_lifecycle_event=start
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=start
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-11-26 15:36

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245b737ae2c0322da63354efcb0

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
VITE_BACKEND_API_ROOT=https://sheltercenter-api.com
npm_config_user_agent=npm/10.9.2 node/v22.17.1 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=3163
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=sheltercenter-frontend
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --host 0.0.0.0 --port $PORT
npm_package_version=0.0.0
npm_lifecycle_event=start
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=start
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-11-22 15:46

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245b737ae2cf3648847bac7865e

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
VITE_BACKEND_API_ROOT=https://sheltercenter-api.com
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=16514
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=sheltercenter-frontend
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --host 0.0.0.0 --port $PORT
npm_package_version=0.0.0
npm_lifecycle_event=start
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=start
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-07-11 01:01

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245b737ae2cf3648847b4c851c8

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
VITE_BACKEND_API_ROOT=https://sheltercenter-api.com
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=38196
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=sheltercenter-frontend
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --host 0.0.0.0 --port $PORT
npm_package_version=0.0.0
npm_lifecycle_event=start
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=start
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-07-08 20:17

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245b737ae2cf3648847fa35b904

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
VITE_BACKEND_API_ROOT=https://sheltercenter-api.com
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=16431
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=sheltercenter-frontend
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --host 0.0.0.0 --port $PORT
npm_package_version=0.0.0
npm_lifecycle_event=start
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=start
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-07-07 05:51

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245b737ae2cf36488471ef9e8c4

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
VITE_BACKEND_API_ROOT=https://sheltercenter-api.com
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=15760
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=sheltercenter-frontend
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --host 0.0.0.0 --port $PORT
npm_package_version=0.0.0
npm_lifecycle_event=start
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=start
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-07-04 23:34

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245b737ae2cf36488471a0f6e7a

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
VITE_BACKEND_API_ROOT=https://sheltercenter-api.com
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=42137
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=sheltercenter-frontend
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --host 0.0.0.0 --port $PORT
npm_package_version=0.0.0
npm_lifecycle_event=start
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=start
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-07-02 20:59

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245b737ae2cf3648847bc446ab4

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
VITE_BACKEND_API_ROOT=https://sheltercenter-api.com
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=57810
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=sheltercenter-frontend
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --host 0.0.0.0 --port $PORT
npm_package_version=0.0.0
npm_lifecycle_event=start
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=start
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-06-30 15:51

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245b737ae2cf36488475633cdb0

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
VITE_BACKEND_API_ROOT=https://sheltercenter-api.com
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=28962
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=sheltercenter-frontend
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --host 0.0.0.0 --port $PORT
npm_package_version=0.0.0
npm_lifecycle_event=start
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=start
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-06-26 09:03

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245b737ae2cf36488472016ba0c

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
VITE_BACKEND_API_ROOT=https://sheltercenter-api.com
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=56167
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=sheltercenter-frontend
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --host 0.0.0.0 --port $PORT
npm_package_version=0.0.0
npm_lifecycle_event=start
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=start
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-06-24 11:20

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245b737ae2cf36488478ebe4957

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
VITE_BACKEND_API_ROOT=https://sheltercenter-api.com
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=56940
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=sheltercenter-frontend
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --host 0.0.0.0 --port $PORT
npm_package_version=0.0.0
npm_lifecycle_event=start
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=start
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-06-22 14:06

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245b737ae2cf3648847ed757260

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
VITE_BACKEND_API_ROOT=https://sheltercenter-api.com
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=22018
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=sheltercenter-frontend
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --host 0.0.0.0 --port $PORT
npm_package_version=0.0.0
npm_lifecycle_event=start
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=start
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-06-20 13:20

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245b737ae2cf3648847425d0706

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
VITE_BACKEND_API_ROOT=https://sheltercenter-api.com
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=26203
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=sheltercenter-frontend
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --host 0.0.0.0 --port $PORT
npm_package_version=0.0.0
npm_lifecycle_event=start
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=start
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-06-16 17:16

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245b737ae2cf3648847bedb6137

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
VITE_BACKEND_API_ROOT=https://sheltercenter-api.com
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=49711
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=sheltercenter-frontend
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --host 0.0.0.0 --port $PORT
npm_package_version=0.0.0
npm_lifecycle_event=start
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=start
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-06-12 17:19

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245b737ae2cf3648847a7528b4e

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
VITE_BACKEND_API_ROOT=https://sheltercenter-api.com
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=53621
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=sheltercenter-frontend
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --host 0.0.0.0 --port $PORT
npm_package_version=0.0.0
npm_lifecycle_event=start
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=start
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-06-11 03:45

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245b737ae2cf3648847e5d65f93

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
VITE_BACKEND_API_ROOT=https://sheltercenter-api.com
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=11880
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=sheltercenter-frontend
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --host 0.0.0.0 --port $PORT
npm_package_version=0.0.0
npm_lifecycle_event=start
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=start
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-06-09 01:43

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245b737ae2cf36488475e05b192

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
VITE_BACKEND_API_ROOT=https://sheltercenter-api.com
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=25329
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=sheltercenter-frontend
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --host 0.0.0.0 --port $PORT
npm_package_version=0.0.0
npm_lifecycle_event=start
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=start
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-06-05 07:25

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245b737ae2cf36488478a48b184

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
VITE_BACKEND_API_ROOT=https://sheltercenter-api.com
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=23581
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=sheltercenter-frontend
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --host 0.0.0.0 --port $PORT
npm_package_version=0.0.0
npm_lifecycle_event=start
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=start
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-06-02 16:43

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245b737ae2c2c7c9bf905bd0161

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
VITE_BACKEND_API_ROOT=https://sheltercenter-api.com
npm_config_user_agent=npm/10.9.2 node/v22.14.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=12236
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=sheltercenter-frontend
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --host 0.0.0.0 --port $PORT
npm_package_version=0.0.0
npm_lifecycle_event=start
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=start
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-06-01 05:53

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245b737ae2c2c7c9bf9009dbca5

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
VITE_BACKEND_API_ROOT=https://sheltercenter-api.com
npm_config_user_agent=npm/10.9.2 node/v22.14.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=4215
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=sheltercenter-frontend
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --host 0.0.0.0 --port $PORT
npm_package_version=0.0.0
npm_lifecycle_event=start
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=start
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-05-30 09:12

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245b737ae2c2c7c9bf945008d38

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
VITE_BACKEND_API_ROOT=https://sheltercenter-api.com
npm_config_user_agent=npm/10.9.2 node/v22.14.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=13553
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=sheltercenter-frontend
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --host 0.0.0.0 --port $PORT
npm_package_version=0.0.0
npm_lifecycle_event=start
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=start
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-05-29 03:19

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245b737ae2c2c7c9bf9ac4d3d14

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
VITE_BACKEND_API_ROOT=https://sheltercenter-api.com
npm_config_user_agent=npm/10.9.2 node/v22.14.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=6139
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=sheltercenter-frontend
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --host 0.0.0.0 --port $PORT
npm_package_version=0.0.0
npm_lifecycle_event=start
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=start
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-05-26 22:53

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245b737ae2c2c7c9bf94222228d

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
VITE_BACKEND_API_ROOT=https://sheltercenter-api.com
npm_config_user_agent=npm/10.9.2 node/v22.14.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=58902
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=sheltercenter-frontend
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --host 0.0.0.0 --port $PORT
npm_package_version=0.0.0
npm_lifecycle_event=start
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=start
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-05-25 02:57

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245b737ae2c2c7c9bf91211d45b

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
VITE_BACKEND_API_ROOT=https://sheltercenter-api.com
npm_config_user_agent=npm/10.9.2 node/v22.14.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=59125
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=sheltercenter-frontend
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --host 0.0.0.0 --port $PORT
npm_package_version=0.0.0
npm_lifecycle_event=start
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=start
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-05-23 00:17

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245b737ae2c2c7c9bf9a9454a3a

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
VITE_BACKEND_API_ROOT=https://sheltercenter-api.com
npm_config_user_agent=npm/10.9.2 node/v22.14.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=7347
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=sheltercenter-frontend
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --host 0.0.0.0 --port $PORT
npm_package_version=0.0.0
npm_lifecycle_event=start
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=start
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-05-21 01:33

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245b737ae2c2c7c9bf9db801b88

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
VITE_BACKEND_API_ROOT=https://sheltercenter-api.com
npm_config_user_agent=npm/10.9.2 node/v22.14.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=30785
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=sheltercenter-frontend
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --host 0.0.0.0 --port $PORT
npm_package_version=0.0.0
npm_lifecycle_event=start
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=start
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-05-19 01:54

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245b737ae2c2c7c9bf9b8006bb8

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
VITE_BACKEND_API_ROOT=https://sheltercenter-api.com
npm_config_user_agent=npm/10.9.2 node/v22.14.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=28090
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=sheltercenter-frontend
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --host 0.0.0.0 --port $PORT
npm_package_version=0.0.0
npm_lifecycle_event=start
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=start
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-05-17 01:46

Create report

Finds vulnerable Vite development environment

ViteJS development environment found and vulnerable to CVE-2025-30208

IP: 75.2.60.68
Domain: www.learntigrigna.com
Port: 443
URL: https://www.learntigrigna.com

First seen 2025-05-26 01:47
Last seen 2026-01-12 21:13
Open for 231 days

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e09224599b30eee6bed227902beb915

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.0 node/v22.12.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=38052
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.0
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=learntigrignamain
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2026-01-12 21:13

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e09224599b30eee6bed22799863373f

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.0 node/v22.12.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=20860
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.0
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=learntigrignamain
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2026-01-11 21:23

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e09224599b30eee6bed22792b249f84

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.0 node/v22.12.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=21262
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.0
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=learntigrignamain
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2026-01-10 21:19

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e09224599b30eee6bed2279fbf91804

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.0 node/v22.12.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=48964
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.0
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=learntigrignamain
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2026-01-09 21:21

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e09224599b30eee6bed22793822d68a

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.0 node/v22.12.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=34569
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.0
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=learntigrignamain
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2026-01-08 21:28

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e09224599b30eee6bed2279860e6982

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.0 node/v22.12.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=10866
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.0
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=learntigrignamain
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2026-01-07 21:17

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e09224599b30eee6bed2279a7154b26

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.0 node/v22.12.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=41873
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.0
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=learntigrignamain
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2026-01-06 21:15

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e09224599b30eee6bed22797e6bc253

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.0 node/v22.12.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=44831
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.0
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=learntigrignamain
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2026-01-05 21:04

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e09224599b30eee6bed2279afabc3d5

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.0 node/v22.12.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=39482
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.0
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=learntigrignamain
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2026-01-03 21:15

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e09224599b30eee6bed2279f5b7a477

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.0 node/v22.12.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=39646
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.0
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=learntigrignamain
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2026-01-02 21:18

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e09224599b30eee6bed22799291bf19

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.0 node/v22.12.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=28361
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.0
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=learntigrignamain
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2026-01-01 21:24

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e09224599b30eee6bed22790c8734ed

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.0 node/v22.12.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=39424
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.0
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=learntigrignamain
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-12-31 21:26

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e09224599b30eee6bed2279ae6734e4

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.0 node/v22.12.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=11834
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.0
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=learntigrignamain
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-12-30 21:11

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e09224599b30eee6bed2279cb94a69a

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.0 node/v22.12.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=36488
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.0
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=learntigrignamain
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-12-30 08:07

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e09224599b30eee6bed2279c522fdf4

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.0 node/v22.12.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=41530
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.0
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=learntigrignamain
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-12-26 06:16

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e09224599b30eee6bed2279b8739515

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.0 node/v22.12.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=51695
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.0
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=learntigrignamain
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-12-24 21:15

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e09224599b30eee6bed22798dc7087d

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.0 node/v22.12.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=52377
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.0
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=learntigrignamain
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-12-23 01:35

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e09224599b30eee6bed22790c455da3

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.0 node/v22.12.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=4479
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.0
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=learntigrignamain
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-12-20 22:18

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e09224599b30eee6bed227999287ef5

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.0 node/v22.12.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=48639
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.0
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=learntigrignamain
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-12-18 13:54

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e09224599b30eee6bed227918ce0bcb

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.0 node/v22.12.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=26682
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.0
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=learntigrignamain
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-12-16 10:44

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e09224599b30eee6bed22799c77cd20

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.0 node/v22.12.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=52637
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.0
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=learntigrignamain
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-12-14 07:19

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e09224599b30eee6bed227969ff5402

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.0 node/v22.12.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=54361
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.0
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=learntigrignamain
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-12-13 07:17

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e09224599b30eee6bed227942525364

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.0 node/v22.12.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=21248
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.0
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=learntigrignamain
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-12-11 10:53

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e09224599b30eee6bed2279f8b62162

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.0 node/v22.12.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=18794
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.0
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=learntigrignamain
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-12-08 06:54

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e09224599b30eee6bed22799f9b75ef

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.0 node/v22.12.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=35493
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.0
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=learntigrignamain
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-12-01 15:37

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e09224599b30eee6bed22790ce0f2b4

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.0 node/v22.12.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=43226
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.0
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=learntigrignamain
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-07-20 06:23

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e09224599b30eee6bed22796e69c6fe

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.0 node/v22.12.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=58574
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.0
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=learntigrignamain
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-07-18 08:42

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e09224599b30eee6bed22797dd12963

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.0 node/v22.12.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=52397
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.0
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=learntigrignamain
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-07-16 07:32

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e09224599b30eee6bed2279276fe850

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.0 node/v22.12.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=4155
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.0
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=learntigrignamain
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-07-14 07:44

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e09224599b30eee6bed2279584162d8

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.0 node/v22.12.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=6360
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.0
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=learntigrignamain
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-07-12 08:07

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e09224599b30eee6bed2279400f6dd0

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.0 node/v22.12.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=35577
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.0
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=learntigrignamain
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-07-10 08:44

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e09224599b30eee6bed2279186b8b20

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.0 node/v22.12.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=39821
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.0
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=learntigrignamain
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-07-08 13:13

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e09224599b30eee6bed227967400fd2

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.0 node/v22.12.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=49396
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.0
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=learntigrignamain
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-07-06 17:25

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e09224599b30eee6bed2279e5cd6854

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.0 node/v22.12.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=45493
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.0
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=learntigrignamain
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-07-04 15:52

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e09224599b30eee6bed22799418fb88

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.0 node/v22.12.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=15728
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.0
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=learntigrignamain
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-07-02 16:02

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e09224599b30eee6bed2279cb533ad6

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.0 node/v22.12.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=45648
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.0
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=learntigrignamain
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-06-30 14:24

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e09224599b30eee6bed2279a7060f29

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.0 node/v22.12.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=52742
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.0
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=learntigrignamain
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-06-26 05:51

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e09224599b30eee6bed22795f6493a5

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.0 node/v22.12.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=15219
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.0
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=learntigrignamain
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-06-24 04:20

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e09224599b30eee6bed2279cc19fdfc

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.0 node/v22.12.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=50604
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.0
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=learntigrignamain
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-06-22 06:20

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e09224599b30eee6bed22791f084716

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.0 node/v22.12.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=4092
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.0
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=learntigrignamain
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-06-20 08:23

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e09224599b30eee6bed22796995b358

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.0 node/v22.12.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=21064
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.0
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=learntigrignamain
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-06-16 08:39

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e09224599b30eee6bed2279cfd5d526

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.0 node/v22.12.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=52653
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.0
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=learntigrignamain
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-06-12 11:07

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e09224599b30eee6bed2279fe91b900

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.0 node/v22.12.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=38707
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.0
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=learntigrignamain
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-06-10 14:27

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e09224599b30eee6bed2279d8bbc69f

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.0 node/v22.12.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=9821
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.0
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=learntigrignamain
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-06-08 13:22

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e09224599b30eee6bed22792e3d1727

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.0 node/v22.12.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=57354
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.0
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=learntigrignamain
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-06-04 21:02

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e09224599b30eee6bed2279a1ab981b

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.0 node/v22.12.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=15903
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.0
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=learntigrignamain
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-06-02 21:46

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e09224599b30eee6bed2279a6c0965c

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.0 node/v22.12.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=21482
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.0
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=learntigrignamain
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-06-01 15:49

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e09224599b30eee6bed2279b63f5d67

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.0 node/v22.12.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=31141
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.0
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=learntigrignamain
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-05-30 11:16

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e09224599b30eee6bed227993305882

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.0 node/v22.12.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=5994
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.0
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=learntigrignamain
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-05-28 02:00

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e09224599b30eee6bed227930d2ac29

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.0 node/v22.12.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=18739
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.0
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=learntigrignamain
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-05-26 01:47

Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 75.2.60.68
Domain: api-hom.suamei.com.br
Port: 443
URL: https://api-hom.suamei.com.br

First seen 2025-11-13 00:03
Last seen 2026-01-12 03:34
Open for 60 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109
```
Public Swagger UI/API detected at path: /api-docs/swagger.json
```
  Found on 2026-01-12 03:34
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 75.2.60.68
Domain: hack.pentest.nz
Port: 80
URL: http://hack.pentest.nz

First seen 2025-11-12 04:23
Last seen 2026-01-12 03:05
Open for 60 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109
```
Public Swagger UI/API detected at path: /api-docs/swagger.json
```
  Found on 2026-01-12 03:05
Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 75.2.60.68
Domain: devapi.jdform.co
Port: 443
URL: https://devapi.jdform.co

First seen 2025-11-12 03:43
Last seen 2026-01-12 02:23
Open for 60 days

Severity: info
Fingerprint: 5733ddf49ff49cd1b885ff43735a0c8c0c9dd0392af40ac279574fb6a1e6e304

Public Swagger UI/API detected at path: /swagger.json - sample paths:
GET /about/
GET /about/download/{doc_id}/
GET /about/{id}/
GET /contributors/
GET /contributors/{user}/
GET /documents/
GET /documents/{id}/
GET /download/{doc_id}/
GET /editor_confirmation/{token}/
GET /editors/
GET /editors/{id}/
GET /law_areas/
GET /law_areas/{id}/
GET /lawyer_confirmation/{token}/
GET /plan_benefits/
GET /plans/
GET /plans/{id}/
GET /resource_types/
GET /resource_types/{id}/
GET /subscriptions/
GET /subscriptions/canceled_message/{subscription_id}/
GET /subscriptions/{id}/
GET /user_credit_card/
GET /users/
GET /users/{id}/
PATCH /change_password/
POST /check_email/
POST /confirmation/{token}/
POST /contact-form/
POST /contributor_confirmation/{user}/
POST /contributor_verification/{token}/
POST /create_editor/
POST /create_lawyer/
POST /credit_cards/
POST /credit_cards_detach/
POST /email_update_confirmation/{token}/
POST /login/
POST /registration/contributor/
POST /registration/user/
POST /request_reset_pass/
POST /reset_pass/
POST /social-signup/
POST /stripe_web_hook/
POST /subscriptions/reactivate/
POST /test_credit_cards/
POST /web-hook/
PUT /admin/update/{user}/
PUT /contributors/update/{user}/
PUT /documents_update/{id}/
PUT /editors/update/{user}/
PUT /users/update/{user}/

Found on 2026-01-12 02:23

Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 75.2.60.68
Domain: devapi.jdform.co
Port: 80
URL: http://devapi.jdform.co

First seen 2025-11-12 03:43
Last seen 2026-01-12 02:23
Open for 60 days

Severity: info
Fingerprint: 5733ddf49ff49cd1b885ff43735a0c8c0c9dd0392af40ac279574fb6a1e6e304

Public Swagger UI/API detected at path: /swagger.json - sample paths:
GET /about/
GET /about/download/{doc_id}/
GET /about/{id}/
GET /contributors/
GET /contributors/{user}/
GET /documents/
GET /documents/{id}/
GET /download/{doc_id}/
GET /editor_confirmation/{token}/
GET /editors/
GET /editors/{id}/
GET /law_areas/
GET /law_areas/{id}/
GET /lawyer_confirmation/{token}/
GET /plan_benefits/
GET /plans/
GET /plans/{id}/
GET /resource_types/
GET /resource_types/{id}/
GET /subscriptions/
GET /subscriptions/canceled_message/{subscription_id}/
GET /subscriptions/{id}/
GET /user_credit_card/
GET /users/
GET /users/{id}/
PATCH /change_password/
POST /check_email/
POST /confirmation/{token}/
POST /contact-form/
POST /contributor_confirmation/{user}/
POST /contributor_verification/{token}/
POST /create_editor/
POST /create_lawyer/
POST /credit_cards/
POST /credit_cards_detach/
POST /email_update_confirmation/{token}/
POST /login/
POST /registration/contributor/
POST /registration/user/
POST /request_reset_pass/
POST /reset_pass/
POST /social-signup/
POST /stripe_web_hook/
POST /subscriptions/reactivate/
POST /test_credit_cards/
POST /web-hook/
PUT /admin/update/{user}/
PUT /contributors/update/{user}/
PUT /documents_update/{id}/
PUT /editors/update/{user}/
PUT /users/update/{user}/

Found on 2026-01-12 02:23

Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 75.2.60.68
Domain: service.linklsm.id
Port: 443
URL: https://service.linklsm.id

First seen 2025-11-12 01:53
Last seen 2026-01-12 00:55
Open for 60 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1b6e67656b6e67656b6e67656b6e67656b6e67656b6e67656
```
Public Swagger UI/API detected at path: /swagger-ui.html
```
  Found on 2026-01-12 00:55
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 75.2.60.68
Domain: t-api.lightbeans.com
Port: 443
URL: https://t-api.lightbeans.com

First seen 2025-11-11 03:26
Last seen 2026-01-11 02:17
Open for 60 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1d83dc3bfd83dc3bfd83dc3bfd83dc3bfd83dc3bfd83dc3bf
```
Public Swagger UI/API detected at path: /swagger/swagger-ui.html
```
  Found on 2026-01-11 02:17
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 75.2.60.68
Domain: api.hashhound.io
Port: 443
URL: https://api.hashhound.io

First seen 2025-11-08 00:52
Last seen 2026-01-10 02:42
Open for 63 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109
```
Public Swagger UI/API detected at path: /api-docs/swagger.json
```
  Found on 2026-01-10 02:42
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 75.2.60.68
Domain: api.coverage.moz.tools
Port: 443
URL: https://api.coverage.moz.tools

First seen 2025-11-11 00:07
Last seen 2026-01-10 01:24
Open for 60 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1b885ff433b3cb16394541ed2f5f6c0d841c174ff3588e404
```
Public Swagger UI/API detected at path: /swagger.json - sample paths:
GET /v2/extensions
GET /v2/filters
GET /v2/history
GET /v2/latest
GET /v2/path
```
  Found on 2026-01-10 01:24
Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 75.2.60.68
Domain: api.perpetussystem.com.br
Port: 443
URL: https://api.perpetussystem.com.br

First seen 2025-11-18 00:39
Last seen 2026-01-10 01:05
Open for 53 days

Severity: info
Fingerprint: 5733ddf49ff49cd151e75e4bb5752f79013829c80d34b48626987131077a4898

Public Swagger UI/API detected at path: /v3/api-docs - sample paths:
DELETE /additional-product-details/delete
DELETE /beneficiary/delete
DELETE /business-client/delete
DELETE /client/delete
DELETE /enterprise/remove-user
DELETE /integral-part/delete
DELETE /interest-rate/delete
DELETE /planProduct/delete
DELETE /plot-product-details/delete
DELETE /proposal-addit-product/delete
DELETE /user/delete
GET /additional-product-details/get-additional-product-details
GET /additional-product-details/get-all
GET /beneficiary/get-all
GET /beneficiary/get-by
GET /business-client/get-all
GET /business-client/get-business-client
GET /client/get-all
GET /client/get-by
GET /co-owner
GET /collection
GET /contract
GET /contract/pending-contracts
GET /cremation
GET /cremation-product-details
GET /cremation/cremation-minutes-by-proposal
GET /disapproval-message
GET /document
GET /enterprise
GET /funeral
GET /funeral-room
GET /integral-part/get-all
GET /integral-part/get-by
GET /interest-rate/get-all
GET /interest-rate/get-interest-rate
GET /lot
GET /niche
GET /people-proposal/get-by-proposal
GET /planProduct/get-all
GET /planProduct/get-planProduct-by
GET /plot-product-details/get-all
GET /plot-product-details/get-plot-product-details
GET /product
GET /proposal
GET /proposal-addit-product
GET /proposal-tmp-status
GET /proposal/get-proposals-search-page
GET /proposal/proof-approval
GET /role/get-all
GET /user/get-all
GET /user/get-logged
GET /user/get-user
POST /additional-product-details/create
POST /auth/login
POST /auth/reset-password
POST /auth/update-password
POST /auth/validate-token
POST /beneficiary/create
POST /business-client/create
POST /client/create
POST /contract/turn-contract-digital
POST /cremation/create-ashes-protocol
POST /cremation/create-cremation-declaration
POST /cremation/create-minutes-document
POST /cremation/create-partial-minutes-document
POST /cremation/download-ashes-protocol-pdf
POST /cremation/download-cremation-declaration-pdf
POST /cremation/download-minutes-document-pdf
POST /document/docsales
POST /document/ftp
POST /enterprise/add-user
POST /esign
POST /esign/resend-email
POST /integral-part/create
POST /interest-rate/create
POST /interest-rate/pmt-calc
POST /interest-rate/price-table-calc
POST /orchestrator
POST /orchestrator/generate-and-send-document
POST /orchestrator/orchestrate-contract-at-status-change
POST /orchestrator/send-json-to-team
POST /pdf/antecipate-physical-contract
POST /pdf/generate-proposal-and-contract
POST /pdf/regenerate-contract
POST /pdf/regenerate-proposal
POST /planProduct/create
POST /plot-product-details/create
POST /proposal-addit-product/create
POST /tmp-proposal/send
POST /user/create
POST /user/new-role
PUT /additional-product-details/update
PUT /beneficiary/deactivate
PUT /beneficiary/update
PUT /business-client/update
PUT /client/update
PUT /client/update-if-editable
PUT /co-owner/deactivate
PUT /esign/cancel
PUT /integral-part/deactivate
PUT /integral-part/update
PUT /interest-rate/update
PUT /orchestrator/update-contract
PUT /planProduct/update
PUT /plot-product-details/update
PUT /proposal-addit-product/deactivate
PUT /proposal-addit-product/update
PUT /proposal-tmp-status/use-proposal
PUT /proposal/update-status
PUT /user/deactivate
PUT /user/update

Found on 2026-01-10 01:05

Severity: info
Fingerprint: 5733ddf49ff49cd151e75e4bb5752f79013829c80d34b48626987131725a334d

Public Swagger UI/API detected at path: /v3/api-docs - sample paths:
DELETE /additional-product-details/delete
DELETE /beneficiary/delete
DELETE /business-client/delete
DELETE /client/delete
DELETE /enterprise/remove-user
DELETE /integral-part/delete
DELETE /interest-rate/delete
DELETE /planProduct/delete
DELETE /plot-product-details/delete
DELETE /proposal-addit-product/delete
DELETE /user/delete
GET /additional-product-details/get-additional-product-details
GET /additional-product-details/get-all
GET /beneficiary/get-all
GET /beneficiary/get-by
GET /business-client/get-all
GET /business-client/get-business-client
GET /client/get-all
GET /client/get-by
GET /co-owner
GET /collection
GET /contract
GET /contract/pending-contracts
GET /cremation
GET /cremation-product-details
GET /disapproval-message
GET /document
GET /enterprise
GET /funeral
GET /funeral-room
GET /integral-part/get-all
GET /integral-part/get-by
GET /interest-rate/get-all
GET /interest-rate/get-interest-rate
GET /lot
GET /niche
GET /people-proposal/get-by-proposal
GET /planProduct/get-all
GET /planProduct/get-planProduct-by
GET /plot-product-details/get-all
GET /plot-product-details/get-plot-product-details
GET /product
GET /proposal
GET /proposal-addit-product
GET /proposal-tmp-status
GET /proposal/get-proposals-search-page
GET /proposal/proof-approval
GET /role/get-all
GET /user/get-all
GET /user/get-logged
GET /user/get-user
POST /additional-product-details/create
POST /auth/login
POST /auth/reset-password
POST /auth/update-password
POST /auth/validate-token
POST /beneficiary/create
POST /business-client/create
POST /client/create
POST /cremation/create-ashes-protocol
POST /cremation/create-cremation-declaration
POST /cremation/create-minutes-document
POST /cremation/create-partial-minutes-document
POST /cremation/download-ashes-protocol-pdf
POST /cremation/download-cremation-declaration-pdf
POST /cremation/download-minutes-document-pdf
POST /document/docsales
POST /document/ftp
POST /enterprise/add-user
POST /esign
POST /esign/resend-email
POST /integral-part/create
POST /interest-rate/create
POST /interest-rate/pmt-calc
POST /interest-rate/price-table-calc
POST /orchestrator
POST /orchestrator/generate-and-send-document
POST /orchestrator/orchestrate-contract-at-status-change
POST /orchestrator/send-json-to-team
POST /pdf/antecipate-physical-contract
POST /pdf/generate-proposal-and-contract
POST /pdf/regenerate-or-antecipate-contract
POST /pdf/regenerate-proposal
POST /planProduct/create
POST /plot-product-details/create
POST /proposal-addit-product/create
POST /tmp-proposal/send
POST /user/create
POST /user/new-role
PUT /additional-product-details/update
PUT /beneficiary/deactivate
PUT /beneficiary/update
PUT /business-client/update
PUT /client/update
PUT /client/update-if-editable
PUT /co-owner/deactivate
PUT /esign/cancel
PUT /integral-part/deactivate
PUT /integral-part/update
PUT /interest-rate/update
PUT /orchestrator/update-contract
PUT /planProduct/update
PUT /plot-product-details/update
PUT /proposal-addit-product/deactivate
PUT /proposal-addit-product/update
PUT /proposal-tmp-status/use-proposal
PUT /proposal/update-status
PUT /user/deactivate
PUT /user/update

Found on 2025-12-16 16:48

Severity: info
Fingerprint: 5733ddf49ff49cd151e75e4bb5752f79013829c80d34b486269871315f750581

Public Swagger UI/API detected at path: /v3/api-docs - sample paths:
DELETE /additional-product-details/delete
DELETE /beneficiary/delete
DELETE /business-client/delete
DELETE /client/delete
DELETE /enterprise/remove-user
DELETE /integral-part/delete
DELETE /interest-rate/delete
DELETE /planProduct/delete
DELETE /plot-product-details/delete
DELETE /proposal-addit-product/delete
DELETE /user/delete
GET /additional-product-details/get-additional-product-details
GET /additional-product-details/get-all
GET /beneficiary/get-all
GET /beneficiary/get-by
GET /business-client/get-all
GET /business-client/get-business-client
GET /client/get-all
GET /client/get-by
GET /co-owner
GET /collection
GET /contract
GET /contract/pending-contracts
GET /cremation
GET /cremation-product-details
GET /disapproval-message
GET /document
GET /enterprise
GET /funeral
GET /funeral-room
GET /integral-part/get-all
GET /integral-part/get-by
GET /interest-rate/get-all
GET /interest-rate/get-interest-rate
GET /lot
GET /niche
GET /people-proposal/get-by-proposal
GET /planProduct/get-all
GET /planProduct/get-planProduct-by
GET /plot-product-details/get-all
GET /plot-product-details/get-plot-product-details
GET /product
GET /proposal
GET /proposal-addit-product
GET /proposal-tmp-status
GET /proposal/get-proposals-search-page
GET /proposal/proof-approval
GET /role/get-all
GET /user/get-all
GET /user/get-logged
GET /user/get-user
POST /additional-product-details/create
POST /auth/login
POST /auth/reset-password
POST /auth/update-password
POST /auth/validate-token
POST /beneficiary/create
POST /business-client/create
POST /client/create
POST /cremation/download-ashes-protocol
POST /cremation/download-declaration
POST /document/docsales
POST /document/ftp
POST /enterprise/add-user
POST /esign
POST /esign/resend-email
POST /integral-part/create
POST /interest-rate/create
POST /interest-rate/pmt-calc
POST /interest-rate/price-table-calc
POST /orchestrator
POST /orchestrator/generate-and-send-document
POST /orchestrator/orchestrate-contract-at-status-change
POST /orchestrator/send-json-to-team
POST /pdf/antecipate-physical-contract
POST /pdf/generate-proposal-and-contract
POST /pdf/regenerate-or-antecipate-contract
POST /pdf/regenerate-proposal
POST /planProduct/create
POST /plot-product-details/create
POST /proposal-addit-product/create
POST /tmp-proposal/send
POST /user/create
POST /user/new-role
PUT /additional-product-details/update
PUT /beneficiary/deactivate
PUT /beneficiary/update
PUT /business-client/update
PUT /client/update
PUT /co-owner/deactivate
PUT /esign/cancel
PUT /integral-part/deactivate
PUT /integral-part/update
PUT /interest-rate/update
PUT /orchestrator/update-contract
PUT /planProduct/update
PUT /plot-product-details/update
PUT /proposal-addit-product/deactivate
PUT /proposal-addit-product/update
PUT /proposal-tmp-status/use-proposal
PUT /proposal/update-status
PUT /user/deactivate
PUT /user/update

Found on 2025-12-13 12:25

Severity: info
Fingerprint: 5733ddf49ff49cd151e75e4bb5752f79013829c80d34b48626987131278ac54d

Public Swagger UI/API detected at path: /v3/api-docs - sample paths:
DELETE /additional-product-details/delete
DELETE /beneficiary/delete
DELETE /business-client/delete
DELETE /client/delete
DELETE /enterprise/remove-user
DELETE /integral-part/delete
DELETE /interest-rate/delete
DELETE /planProduct/delete
DELETE /plot-product-details/delete
DELETE /proposal-addit-product/delete
DELETE /user/delete
GET /additional-product-details/get-additional-product-details
GET /additional-product-details/get-all
GET /beneficiary/get-all
GET /beneficiary/get-by
GET /business-client/get-all
GET /business-client/get-business-client
GET /client/get-all
GET /client/get-by
GET /client/get-by-proposal
GET /co-owner
GET /collection
GET /contract
GET /contract/pending-contracts
GET /cremation
GET /cremation-product-details
GET /disapproval-message
GET /document
GET /enterprise
GET /funeral
GET /funeral-room
GET /integral-part/get-all
GET /integral-part/get-by
GET /interest-rate/get-all
GET /interest-rate/get-interest-rate
GET /lot
GET /niche
GET /planProduct/get-all
GET /planProduct/get-planProduct-by
GET /plot-product-details/get-all
GET /plot-product-details/get-plot-product-details
GET /product
GET /proposal
GET /proposal-addit-product
GET /proposal-tmp-status
GET /proposal/proof-approval
GET /role/get-all
GET /user/get-all
GET /user/get-logged
GET /user/get-user
POST /additional-product-details/create
POST /auth/login
POST /auth/reset-password
POST /auth/update-password
POST /auth/validate-token
POST /beneficiary/create
POST /business-client/create
POST /client/create
POST /cremation/download-ashes-protocol
POST /cremation/download-declaration
POST /document/docsales
POST /document/ftp
POST /enterprise/add-user
POST /esign
POST /esign/resend-email
POST /integral-part/create
POST /interest-rate/create
POST /interest-rate/pmt-calc
POST /interest-rate/price-table-calc
POST /orchestrator
POST /orchestrator/generate-and-send-document
POST /orchestrator/orchestrate-contract-at-status-change
POST /orchestrator/send-json-to-team
POST /pdf/antecipate-physical-contract
POST /pdf/generate-proposal-and-contract
POST /pdf/regenerate-or-antecipate-contract
POST /pdf/regenerate-proposal
POST /planProduct/create
POST /plot-product-details/create
POST /proposal-addit-product/create
POST /tmp-proposal/send
POST /user/create
POST /user/new-role
PUT /additional-product-details/update
PUT /beneficiary/deactivate
PUT /beneficiary/update
PUT /business-client/update
PUT /client/update
PUT /co-owner/deactivate
PUT /esign/cancel
PUT /integral-part/deactivate
PUT /integral-part/update
PUT /interest-rate/update
PUT /orchestrator/update-contract
PUT /planProduct/update
PUT /plot-product-details/update
PUT /proposal-addit-product/deactivate
PUT /proposal-addit-product/update
PUT /proposal-tmp-status/use-proposal
PUT /proposal/update-status
PUT /user/deactivate
PUT /user/update

Found on 2025-11-18 00:39

Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 75.2.60.68
Domain: www.app.freightlegend.com
Port: 443
URL: https://www.app.freightlegend.com

First seen 2025-11-10 01:52
Last seen 2026-01-10 00:54
Open for 60 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109
```
Public Swagger UI/API detected at path: /api-docs/swagger.json
```
  Found on 2026-01-10 00:54
Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 75.2.60.68
Domain: integration.vetcove.com
Port: 443
URL: https://integration.vetcove.com

First seen 2025-11-10 01:31
Last seen 2026-01-10 00:34
Open for 60 days

Severity: info
Fingerprint: 5733ddf49ff49cd1b885ff43857d1bf913edccb7e2d133973a9ee497d0b5479d

Public Swagger UI/API detected at path: /swagger.json - sample paths:
GET /_vetcove/api/buyers/data-exports/
GET /_vetcove/api/buyers/{id}/appointments/
GET /_vetcove/api/buyers/{id}/clientnotes/
GET /_vetcove/api/buyers/{id}/clients/
GET /_vetcove/api/buyers/{id}/clients/customfields/
GET /_vetcove/api/buyers/{id}/codes/
GET /_vetcove/api/buyers/{id}/communications/
GET /_vetcove/api/buyers/{id}/estimates/
GET /_vetcove/api/buyers/{id}/inventory/
GET /_vetcove/api/buyers/{id}/invoices/v2/
GET /_vetcove/api/buyers/{id}/patients/alerts/
GET /_vetcove/api/buyers/{id}/patients/attachments/
GET /_vetcove/api/buyers/{id}/patients/customfields/
GET /_vetcove/api/buyers/{id}/patients/diagnoses/
GET /_vetcove/api/buyers/{id}/patients/labs/
GET /_vetcove/api/buyers/{id}/patients/medicalnotes/
GET /_vetcove/api/buyers/{id}/patients/notes/
GET /_vetcove/api/buyers/{id}/patients/problems/
GET /_vetcove/api/buyers/{id}/patients/vaccinations/
GET /_vetcove/api/buyers/{id}/patients/vitals/
GET /_vetcove/api/buyers/{id}/prescriptions/v2/
GET /_vetcove/api/buyers/{id}/providers/
GET /_vetcove/api/buyers/{id}/reminders/
GET /_vetcove/api/buyers/{id}/universal-prescriptions/
GET /_vetcove/api/buyers/{vetcove_buyer_id}/clients/{id}/
GET /_vetcove/api/integrations/companies/
GET /_vetcove/api/integrations/webhooks/test-response/
GET /admin/login/
GET /api/v1/clients/
GET /api/v1/clinic/
GET /api/v1/codes/
GET /api/v1/inventory/items
GET /api/v1/inventory/items/
GET /api/v1/invoices/items
GET /api/v1/invoices/items/
GET /api/v1/patients/medicalnotes
GET /api/v1/patients/medicalnotes/
GET /sso/callback/
GET /sso/oauth-callback/
POST /_clinic/api/buyer/credentials/
POST /_vetcove/api/buyers/corporates/products/
POST /_vetcove/api/buyers/corporates/products/{id}/
POST /_vetcove/api/buyers/{id}/data-exports/
POST /_vetcove/api/buyers/{id}/deactivate/
POST /_vetcove/api/buyers/{id}/orders/
POST /_vetcove/api/buyers/{id}/prescription_writeback/
POST /_vetcove/api/buyers/{id}/prescription_writeback/delete/
POST /_vetcove/api/buyers/{id}/prescription_writeback/external/
POST /_vetcove/api/buyers/{id}/prescription_writeback/update/
POST /_vetcove/api/buyers/{id}/prescriptions_push/
POST /_vetcove/api/buyers/{id}/receivables/
POST /api/v1/clinic/sync/
POST /api/v1/clinic/sync/complete/
PUT /api/v1/clinic/credential/
PUT /api/v1/clinic/deactivate/
PUT /api/v1/inventory/items/mappings/
PUT /api/v1/invoices/
PUT /api/v1/lists/
PUT /api/v1/patients/
PUT /api/v1/prescriptions/
PUT /api/v1/prescriptions/dispensations/
PUT /api/v1/products/
PUT /api/v1/products/mappings/
PUT /api/v1/resources/

Found on 2026-01-10 00:34

Severity: info
Fingerprint: 5733ddf49ff49cd1b885ff43857d1bf913edccb7e2d133973a9ee49760c304ae

Public Swagger UI/API detected at path: /swagger.json - sample paths:
GET /_vetcove/api/buyers/data-exports/
GET /_vetcove/api/buyers/{id}/appointments/
GET /_vetcove/api/buyers/{id}/clientnotes/
GET /_vetcove/api/buyers/{id}/clients/
GET /_vetcove/api/buyers/{id}/codes/
GET /_vetcove/api/buyers/{id}/communications/
GET /_vetcove/api/buyers/{id}/estimates/
GET /_vetcove/api/buyers/{id}/inventory/
GET /_vetcove/api/buyers/{id}/invoices/v2/
GET /_vetcove/api/buyers/{id}/patients/alerts/
GET /_vetcove/api/buyers/{id}/patients/attachments/
GET /_vetcove/api/buyers/{id}/patients/customfields/
GET /_vetcove/api/buyers/{id}/patients/diagnoses/
GET /_vetcove/api/buyers/{id}/patients/labs/
GET /_vetcove/api/buyers/{id}/patients/medicalnotes/
GET /_vetcove/api/buyers/{id}/patients/notes/
GET /_vetcove/api/buyers/{id}/patients/problems/
GET /_vetcove/api/buyers/{id}/patients/vaccinations/
GET /_vetcove/api/buyers/{id}/patients/vitals/
GET /_vetcove/api/buyers/{id}/prescriptions/v2/
GET /_vetcove/api/buyers/{id}/providers/
GET /_vetcove/api/buyers/{id}/reminders/
GET /_vetcove/api/buyers/{id}/universal-prescriptions/
GET /_vetcove/api/buyers/{vetcove_buyer_id}/clients/{id}/
GET /_vetcove/api/integrations/companies/
GET /_vetcove/api/integrations/webhooks/test-response/
GET /admin/login/
GET /api/v1/clients/
GET /api/v1/clinic/
GET /api/v1/codes/
GET /api/v1/inventory/items
GET /api/v1/inventory/items/
GET /api/v1/invoices/items
GET /api/v1/invoices/items/
GET /api/v1/patients/medicalnotes
GET /api/v1/patients/medicalnotes/
GET /sso/callback/
GET /sso/oauth-callback/
POST /_clinic/api/buyer/credentials/
POST /_vetcove/api/buyers/corporates/products/
POST /_vetcove/api/buyers/corporates/products/{id}/
POST /_vetcove/api/buyers/{id}/data-exports/
POST /_vetcove/api/buyers/{id}/deactivate/
POST /_vetcove/api/buyers/{id}/orders/
POST /_vetcove/api/buyers/{id}/prescription_writeback/
POST /_vetcove/api/buyers/{id}/prescription_writeback/delete/
POST /_vetcove/api/buyers/{id}/prescription_writeback/external/
POST /_vetcove/api/buyers/{id}/prescription_writeback/update/
POST /_vetcove/api/buyers/{id}/prescriptions_push/
POST /_vetcove/api/buyers/{id}/receivables/
POST /api/v1/clinic/sync/
POST /api/v1/clinic/sync/complete/
PUT /api/v1/clinic/credential/
PUT /api/v1/clinic/deactivate/
PUT /api/v1/inventory/items/mappings/
PUT /api/v1/invoices/
PUT /api/v1/lists/
PUT /api/v1/patients/
PUT /api/v1/prescriptions/
PUT /api/v1/prescriptions/dispensations/
PUT /api/v1/products/
PUT /api/v1/products/mappings/
PUT /api/v1/resources/

Found on 2025-11-23 06:26

Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 75.2.60.68
Domain: hubspot.api.app.sdocs.com
Port: 443
URL: https://hubspot.api.app.sdocs.com

First seen 2025-12-02 04:09
Last seen 2026-01-09 23:35
Open for 38 days

Severity: info
Fingerprint: 5733ddf49ff49cd151e75e4b763a87836b89d23865da56b0074f326b42204381

Public Swagger UI/API detected at path: /v3/api-docs - sample paths:
DELETE /file
GET /app/access-token
GET /app/install
GET /auth/verify
GET /decodeToken/{token}
GET /documents
GET /envelopes
GET /generate/init
GET /generateTemplate
GET /hubspot/document/{documentId}/generate/Pdf
GET /hubspot/documents/attachments
GET /hubspot/envelope/{envelopeId}/document/{documentId}/signatures
GET /hubspot/file
GET /hubspot/generateFinalPdf
GET /hubspot/getFile
GET /hubspot/mergeData
GET /hubspot/object/{object}/{objectId}/associations
GET /hubspot/objects
GET /hubspot/objects/{objectType}/properties
GET /hubspot/objects/{object}/{objectId}
GET /hubspot/properties/{objectType}/{propertyName}
GET /hubspot/schema/{apiName}
GET /hubspot/schemas
GET /hubspot/user/{userId}
GET /templates
GET /user
GET /users
PATCH /hubspot/object/{objectId}
POST /activity/timeline/info
POST /app/install/sync
POST /app/install/templates
POST /esign/envelope/create
POST /hubspot/datasource/refresh
POST /hubspot/envelope/{envelopeId}/documents/signatureField/uploadSign
POST /hubspot/object/{objName}
POST /hubspot/template
POST /hubspot/uploadFile
POST /hubspot/uploadImage
POST /workflow/actions/generatedocument
POST /workflow/actions/generatedocumentandattach
POST /workflow/actions/generatedocumentesign
POST /workflow/actions/templates

Found on 2026-01-09 23:35

Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 75.2.60.68
Domain: www.famweaver.com
Port: 80
URL: http://www.famweaver.com

First seen 2025-11-08 18:30
Last seen 2026-01-09 23:21
Open for 62 days

Severity: info
Fingerprint: 5733ddf49ff49cd110b5863c3ab104164ad0812947afd5de274814ba9b094c12

Public Swagger UI/API detected at path: /api-docs/swagger.json - sample paths:
ANY info
DELETE /api/conversations/{id}
DELETE /api/conversations/{id}/members/{memberId}
DELETE /api/errors(?=/|$)/all
GET /api(?=/|$)/detailed
GET /api(?=/|$)/health
GET /api(?=/|$)/ready
GET /api/auth/genesis
GET /api/auth/google
GET /api/auth/google/callback
GET /api/auth/me
GET /api/auth/user
GET /api/conversations
GET /api/conversations/matching
GET /api/conversations/{id}/members
GET /api/conversations/{id}/messages
GET /api/conversations/{id}/permissions
GET /api/conversations/{id}/relationships
GET /api/csrf-token
GET /api/debug/session
GET /api/email-preferences(?=/|$)
GET /api/email-preferences(?=/|$)/analytics
GET /api/email-preferences(?=/|$)/track/click/{emailId}
GET /api/email-preferences(?=/|$)/track/open/{emailId}
GET /api/errors(?=/|$)/aggregations
GET /api/errors(?=/|$)/my-errors
GET /api/errors(?=/|$)/recent
GET /api/family-members
GET /api/family-members/search
GET /api/family-relationships
GET /api/family-relationships/between/{fromUserId}/{toUserId}
GET /api/family-relationships/path/{targetUserId}
GET /api/family-tree/structure
GET /api/logout
GET /api/metrics(?=/|$)/capacity
GET /api/metrics(?=/|$)/dashboard
GET /api/metrics(?=/|$)/limits
GET /api/metrics(?=/|$)/resources
GET /api/network(?=/|$)/context
GET /api/network(?=/|$)/dashboard
GET /api/network(?=/|$)/health
GET /api/network(?=/|$)/members
GET /api/network(?=/|$)/repository-stats
GET /api/network(?=/|$)/stats
GET /api/public(?=/|$)/sms-consent/status/{phoneNumber}
GET /api/sms-monitoring(?=/|$)/audit-logs
GET /api/sms-monitoring(?=/|$)/consent-stats
GET /api/sms-monitoring(?=/|$)/dashboard
GET /api/sms-monitoring(?=/|$)/delivery-status
GET /api/sms-monitoring(?=/|$)/service-health
GET /api/sms-monitoring(?=/|$)/sla-metrics
GET /api/v2/events
GET /api/v2/events/{eventId}
GET /api/v2/monitoring(?=/|$)/cache
GET /api/v2/monitoring(?=/|$)/cache-stats
GET /api/v2/monitoring(?=/|$)/health
GET /api/v2/monitoring(?=/|$)/metrics
GET /api/v2/monitoring(?=/|$)/performance
GET /api/v2/monitoring(?=/|$)/query-stats
GET /api/v2/monitoring(?=/|$)/realtime
GET /api/v2/monitoring(?=/|$)/realtime-stats
GET /api/v2/monitoring(?=/|$)/system
GET /api/v2/monitoring(?=/|$)/test
GET /api/v2/monitoring(?=/|$)/user-journey/{userId}
GET /api/v2/network(?=/|$)/members
GET /api/v2/network(?=/|$)/stats
POST /api/auth/generate-api-key
POST /api/auth/genesis/email
POST /api/auth/genesis/magic-link
POST /api/email-preferences(?=/|$)/unsubscribe
POST /api/error-reports
POST /api/family-relationships/fix-labels
POST /api/family-relationships/refresh-cache
POST /api/messages
POST /api/metrics(?=/|$)/drain
POST /api/network(?=/|$)/batch
POST /api/network(?=/|$)/cache/invalidate
POST /api/public(?=/|$)/sms-consent
POST /api/public(?=/|$)/sms-consent/opt-out
POST /api/public(?=/|$)/sms-consent/verify
POST /api/sms-monitoring(?=/|$)/clear-cache
POST /api/v2/events/{eventId}/rsvp
POST /api/v2/monitoring(?=/|$)/cache-optimize
POST /api/v2/monitoring(?=/|$)/cache-stats/reset
POST /api/v2/monitoring(?=/|$)/sessions/clear
POST /api/validate-email
PUT /api/conversations/{id}/settings

Found on 2026-01-09 23:21

Severity: info
Fingerprint: 5733ddf49ff49cd110b5863c3ab104164ad0812947afd5de274814ba5db07b1b

Public Swagger UI/API detected at path: /api-docs/swagger.json - sample paths:
ANY info
DELETE /api/conversations/{id}
DELETE /api/conversations/{id}/members/{memberId}
DELETE /api/errors(?=/|$)/all
GET /api(?=/|$)/detailed
GET /api(?=/|$)/health
GET /api(?=/|$)/ready
GET /api/auth/google
GET /api/auth/google/callback
GET /api/auth/me
GET /api/auth/user
GET /api/conversations
GET /api/conversations/matching
GET /api/conversations/{id}/members
GET /api/conversations/{id}/messages
GET /api/conversations/{id}/permissions
GET /api/conversations/{id}/relationships
GET /api/csrf-token
GET /api/debug/session
GET /api/email-preferences(?=/|$)
GET /api/email-preferences(?=/|$)/analytics
GET /api/email-preferences(?=/|$)/track/click/{emailId}
GET /api/email-preferences(?=/|$)/track/open/{emailId}
GET /api/errors(?=/|$)/aggregations
GET /api/errors(?=/|$)/my-errors
GET /api/errors(?=/|$)/recent
GET /api/family-members
GET /api/family-members/search
GET /api/family-relationships
GET /api/family-relationships/between/{fromUserId}/{toUserId}
GET /api/family-relationships/path/{targetUserId}
GET /api/family-tree/structure
GET /api/logout
GET /api/metrics(?=/|$)/capacity
GET /api/metrics(?=/|$)/dashboard
GET /api/metrics(?=/|$)/limits
GET /api/metrics(?=/|$)/resources
GET /api/network(?=/|$)/context
GET /api/network(?=/|$)/dashboard
GET /api/network(?=/|$)/health
GET /api/network(?=/|$)/members
GET /api/network(?=/|$)/repository-stats
GET /api/network(?=/|$)/stats
GET /api/public(?=/|$)/sms-consent/status/{phoneNumber}
GET /api/sms-monitoring(?=/|$)/audit-logs
GET /api/sms-monitoring(?=/|$)/consent-stats
GET /api/sms-monitoring(?=/|$)/dashboard
GET /api/sms-monitoring(?=/|$)/delivery-status
GET /api/sms-monitoring(?=/|$)/service-health
GET /api/sms-monitoring(?=/|$)/sla-metrics
GET /api/v2/monitoring(?=/|$)/cache
GET /api/v2/monitoring(?=/|$)/cache-stats
GET /api/v2/monitoring(?=/|$)/health
GET /api/v2/monitoring(?=/|$)/metrics
GET /api/v2/monitoring(?=/|$)/performance
GET /api/v2/monitoring(?=/|$)/query-stats
GET /api/v2/monitoring(?=/|$)/realtime
GET /api/v2/monitoring(?=/|$)/realtime-stats
GET /api/v2/monitoring(?=/|$)/system
GET /api/v2/monitoring(?=/|$)/test
GET /api/v2/monitoring(?=/|$)/user-journey/{userId}
POST /api/auth/generate-api-key
POST /api/email-preferences(?=/|$)/unsubscribe
POST /api/error-reports
POST /api/family-relationships/fix-labels
POST /api/family-relationships/refresh-cache
POST /api/messages
POST /api/metrics(?=/|$)/drain
POST /api/network(?=/|$)/batch
POST /api/network(?=/|$)/cache/invalidate
POST /api/public(?=/|$)/sms-consent
POST /api/public(?=/|$)/sms-consent/opt-out
POST /api/public(?=/|$)/sms-consent/verify
POST /api/sms-monitoring(?=/|$)/clear-cache
POST /api/v2/monitoring(?=/|$)/cache-optimize
POST /api/v2/monitoring(?=/|$)/cache-stats/reset
POST /api/v2/monitoring(?=/|$)/sessions/clear
POST /api/validate-email
PUT /api/conversations/{id}/settings

Found on 2025-11-08 18:30

Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 75.2.60.68
Domain: hubspot.api.app.sdocs.com
Port: 80
URL: http://hubspot.api.app.sdocs.com

First seen 2025-12-02 04:09
Last seen 2026-01-09 23:09
Open for 38 days

Severity: info
Fingerprint: 5733ddf49ff49cd151e75e4b763a87836b89d23865da56b0074f326b42204381

Public Swagger UI/API detected at path: /v3/api-docs - sample paths:
DELETE /file
GET /app/access-token
GET /app/install
GET /auth/verify
GET /decodeToken/{token}
GET /documents
GET /envelopes
GET /generate/init
GET /generateTemplate
GET /hubspot/document/{documentId}/generate/Pdf
GET /hubspot/documents/attachments
GET /hubspot/envelope/{envelopeId}/document/{documentId}/signatures
GET /hubspot/file
GET /hubspot/generateFinalPdf
GET /hubspot/getFile
GET /hubspot/mergeData
GET /hubspot/object/{object}/{objectId}/associations
GET /hubspot/objects
GET /hubspot/objects/{objectType}/properties
GET /hubspot/objects/{object}/{objectId}
GET /hubspot/properties/{objectType}/{propertyName}
GET /hubspot/schema/{apiName}
GET /hubspot/schemas
GET /hubspot/user/{userId}
GET /templates
GET /user
GET /users
PATCH /hubspot/object/{objectId}
POST /activity/timeline/info
POST /app/install/sync
POST /app/install/templates
POST /esign/envelope/create
POST /hubspot/datasource/refresh
POST /hubspot/envelope/{envelopeId}/documents/signatureField/uploadSign
POST /hubspot/object/{objName}
POST /hubspot/template
POST /hubspot/uploadFile
POST /hubspot/uploadImage
POST /workflow/actions/generatedocument
POST /workflow/actions/generatedocumentandattach
POST /workflow/actions/generatedocumentesign
POST /workflow/actions/templates

Found on 2026-01-09 23:09

Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 75.2.60.68
Domain: famweaver.com
Port: 443
URL: https://famweaver.com

First seen 2025-12-12 18:17
Last seen 2026-01-09 22:54
Open for 28 days

Severity: info
Fingerprint: 5733ddf49ff49cd110b5863c3ab104164ad0812947afd5de274814ba9b094c12

Public Swagger UI/API detected at path: /api-docs/swagger.json - sample paths:
ANY info
DELETE /api/conversations/{id}
DELETE /api/conversations/{id}/members/{memberId}
DELETE /api/errors(?=/|$)/all
GET /api(?=/|$)/detailed
GET /api(?=/|$)/health
GET /api(?=/|$)/ready
GET /api/auth/genesis
GET /api/auth/google
GET /api/auth/google/callback
GET /api/auth/me
GET /api/auth/user
GET /api/conversations
GET /api/conversations/matching
GET /api/conversations/{id}/members
GET /api/conversations/{id}/messages
GET /api/conversations/{id}/permissions
GET /api/conversations/{id}/relationships
GET /api/csrf-token
GET /api/debug/session
GET /api/email-preferences(?=/|$)
GET /api/email-preferences(?=/|$)/analytics
GET /api/email-preferences(?=/|$)/track/click/{emailId}
GET /api/email-preferences(?=/|$)/track/open/{emailId}
GET /api/errors(?=/|$)/aggregations
GET /api/errors(?=/|$)/my-errors
GET /api/errors(?=/|$)/recent
GET /api/family-members
GET /api/family-members/search
GET /api/family-relationships
GET /api/family-relationships/between/{fromUserId}/{toUserId}
GET /api/family-relationships/path/{targetUserId}
GET /api/family-tree/structure
GET /api/logout
GET /api/metrics(?=/|$)/capacity
GET /api/metrics(?=/|$)/dashboard
GET /api/metrics(?=/|$)/limits
GET /api/metrics(?=/|$)/resources
GET /api/network(?=/|$)/context
GET /api/network(?=/|$)/dashboard
GET /api/network(?=/|$)/health
GET /api/network(?=/|$)/members
GET /api/network(?=/|$)/repository-stats
GET /api/network(?=/|$)/stats
GET /api/public(?=/|$)/sms-consent/status/{phoneNumber}
GET /api/sms-monitoring(?=/|$)/audit-logs
GET /api/sms-monitoring(?=/|$)/consent-stats
GET /api/sms-monitoring(?=/|$)/dashboard
GET /api/sms-monitoring(?=/|$)/delivery-status
GET /api/sms-monitoring(?=/|$)/service-health
GET /api/sms-monitoring(?=/|$)/sla-metrics
GET /api/v2/events
GET /api/v2/events/{eventId}
GET /api/v2/monitoring(?=/|$)/cache
GET /api/v2/monitoring(?=/|$)/cache-stats
GET /api/v2/monitoring(?=/|$)/health
GET /api/v2/monitoring(?=/|$)/metrics
GET /api/v2/monitoring(?=/|$)/performance
GET /api/v2/monitoring(?=/|$)/query-stats
GET /api/v2/monitoring(?=/|$)/realtime
GET /api/v2/monitoring(?=/|$)/realtime-stats
GET /api/v2/monitoring(?=/|$)/system
GET /api/v2/monitoring(?=/|$)/test
GET /api/v2/monitoring(?=/|$)/user-journey/{userId}
GET /api/v2/network(?=/|$)/members
GET /api/v2/network(?=/|$)/stats
POST /api/auth/generate-api-key
POST /api/auth/genesis/email
POST /api/auth/genesis/magic-link
POST /api/email-preferences(?=/|$)/unsubscribe
POST /api/error-reports
POST /api/family-relationships/fix-labels
POST /api/family-relationships/refresh-cache
POST /api/messages
POST /api/metrics(?=/|$)/drain
POST /api/network(?=/|$)/batch
POST /api/network(?=/|$)/cache/invalidate
POST /api/public(?=/|$)/sms-consent
POST /api/public(?=/|$)/sms-consent/opt-out
POST /api/public(?=/|$)/sms-consent/verify
POST /api/sms-monitoring(?=/|$)/clear-cache
POST /api/v2/events/{eventId}/rsvp
POST /api/v2/monitoring(?=/|$)/cache-optimize
POST /api/v2/monitoring(?=/|$)/cache-stats/reset
POST /api/v2/monitoring(?=/|$)/sessions/clear
POST /api/validate-email
PUT /api/conversations/{id}/settings

Found on 2026-01-09 22:54

Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 75.2.60.68
Domain: markupapi.bluent.it
Port: 443
URL: https://markupapi.bluent.it

First seen 2025-12-05 00:28
Last seen 2026-01-09 22:19
Open for 35 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109
```
Public Swagger UI/API detected at path: /api-docs/swagger.json
```
  Found on 2026-01-09 22:19
Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 75.2.60.68
Domain: www.danceschool.fr
Port: 443
URL: https://www.danceschool.fr

First seen 2025-11-22 01:34
Last seen 2026-01-09 22:03
Open for 48 days

Severity: info
Fingerprint: 5733ddf49ff49cd1a8bcc6e5414a2c0243426be0942e7ecb661e501a992e6bc0

Public Swagger UI/API detected at path: /webjars/swagger-ui/index.html - sample paths:
DELETE /api/class-instances/{classInstanceId}
DELETE /api/class-instances/{classInstanceId}/student/{studentId}/refund/{refund}
DELETE /api/dance-classes/{danceClassId}/teacher
DELETE /api/la/comments/{id}
DELETE /api/people/school
DELETE /api/people/schools/students
DELETE /api/people/{personId}/school/{schoolId}
DELETE /api/people/{personId}/schools
DELETE /api/private-session-class-instances/{privateSessionClassInstanceId}
DELETE /api/schools/{schoolId}/init-dance-classes
DELETE /api/verification-tokens/{tokenId}
GET /api/choregraphies
GET /api/choregraphies/author
GET /api/choregraphies/visible
GET /api/choregraphies/{choregraphyId}
GET /api/choregraphies/{choregraphyId}/infos
GET /api/choregraphies/{choregraphyId}/without-music
GET /api/class-instances/all-booked
GET /api/class-instances/booked
GET /api/class-instances/booking-info
GET /api/class-instances/dance-class/{danceClassId}/date/{date}
GET /api/class-instances/dance-class/{danceClassId}/date/{date}/export
GET /api/class-instances/teacher-booking-info
GET /api/dance-classes/family
GET /api/dance-classes/perimeter
GET /api/dance-classes/role/{role}
GET /api/dance-classes/school/{schoolId}
GET /api/dance-classes/student/{studentId}
GET /api/dance-classes/student/{studentId}/perimeter
GET /api/dance-classes/teacher/students
GET /api/dance-classes/{danceClassId}
GET /api/dance-classes/{danceClassId}/dates
GET /api/dance-classes/{danceClassId}/future-dates
GET /api/dance-classes/{danceClassId}/stats
GET /api/dance-classes/{danceClassId}/students
GET /api/dance-classes/{danceClassId}/teachers-of-school
GET /api/events/future
GET /api/events/future/{schoolId}
GET /api/events/role/{role}
GET /api/events/{eventId}
GET /api/events/{eventId}/options
GET /api/events/{eventId}/registered
GET /api/events/{eventId}/students
GET /api/home
GET /api/images
GET /api/images/thumbnail
GET /api/images/{imageId}/display
GET /api/la/archive-categories
GET /api/la/archive-categories/stat-records
GET /api/la/archive-categories/stats/{id}
GET /api/la/archive-categories/{id}
GET /api/la/archive-people
GET /api/la/archive-people/stats/{id}
GET /api/la/archive-people/{id}
GET /api/la/archive-ranks/grand-champion
GET /api/la/archives
GET /api/la/archives/link-categories
GET /api/la/archives/{id}
GET /api/la/categories
GET /api/la/categories/{id}
GET /api/la/comments/by-nominations
GET /api/la/home
GET /api/la/images/{imageId}/display
GET /api/la/nominations
GET /api/la/nominations/by-categories
GET /api/la/nominations/{id}
GET /api/la/people
GET /api/la/people/nominations
GET /api/la/people/{id}
GET /api/la/votes/result
GET /api/la/votes/voter/{voterId}
GET /api/musics/{musicId}
GET /api/people
GET /api/people/active
GET /api/people/active-email/{email}
GET /api/people/children
GET /api/people/connected
GET /api/people/contact/{personId}
GET /api/people/contacts/role/{role}
GET /api/people/contacts/schools
GET /api/people/email/{email}
GET /api/people/email/{email}/id
GET /api/people/export
GET /api/people/export/contacts/schools
GET /api/people/export/dance-class
GET /api/people/export/schools
GET /api/people/role-simple/{role}
GET /api/people/role/{role}
GET /api/people/schools
GET /api/people/schools/autocomplete
GET /api/people/token/{token}
GET /api/people/{personId}
GET /api/people/{personId}/children
GET /api/people/{personId}/perimeter
GET /api/private-session-class-instances
GET /api/private-session-classes/available-hours-group/{privateSessionClassId}
GET /api/private-session-classes/available-hours/{privateSessionClassId}
GET /api/private-session-classes/school/{schoolId}
GET /api/private-session-classes/teacher
GET /api/private-session-classes/{privateSessionClassId}
GET /api/private-sessions/school/{schoolId}
GET /api/private-sessions/teacher
GET /api/rooms/role/{role}
GET /api/rooms/{roomId}
GET /api/schools
GET /api/schools/bookable
GET /api/schools/bookable-with-annual
GET /api/schools/bookable/{schoolId}
GET /api/schools/email/{email}
GET /api/schools/id-by-code/{code}
GET /api/schools/perimeter
GET /api/schools/role/{role}
GET /api/schools/with-registrations-only
GET /api/schools/with-registrations-only-or-card-in-perimeter
GET /api/schools/{schoolId}
GET /api/schools/{schoolId}/prices
GET /api/schools/{studentId}/{schoolId}/prices
GET /api/stats/person/{personId}
GET /api/stats/person/{personId}/perimeter
GET /api/stats/school/{schoolId}
GET /api/steps
GET /api/stripe/cart/{cartId}
GET /api/stripe/carts
GET /api/stripe/carts-by-school
GET /api/stripe/carts/role/{role}
GET /api/stripe/years
GET /api/subscriptions
GET /api/subscriptions/almost-expired/{nbDaysLeftMax}
GET /api/subscriptions/completed-carts/{subscriptionType}
GET /api/subscriptions/expired/{nbDaysMin}
GET /api/subscriptions/school/{schoolId}
GET /api/subscriptions/school/{schoolId}/completed-carts/{subscriptionType}
GET /api/subscriptions/school/{schoolId}/nb-days-left
GET /api/subscriptions/user
GET /api/subscriptions/user/registrations-only
GET /api/verification-tokens
POST /api/auth/change-password
POST /api/auth/confirm-birthdate
POST /api/auth/confirm-simple-registration
POST /api/auth/confirm-validation-code-password
POST /api/auth/refresh-token
POST /api/auth/register
POST /api/auth/request-password
POST /api/auth/sign-in
POST /api/auth/view-as
POST /api/class-instances
POST /api/class-instances/book
POST /api/class-instances/book-list
POST /api/class-instances/unsubscribe/{classInstanceId}
POST /api/dance-classes
POST /api/dance-classes/{danceClassId}/student/{studentId}
POST /api/events
POST /api/events/{eventId}/copy
POST /api/images/upload
POST /api/la/archives/from-result
POST /api/la/comments
POST /api/la/decisions
POST /api/la/mail/nominations
POST /api/la/restore
POST /api/la/restore/archive-people-categories
POST /api/la/restore/archive/{year}
POST /api/la/votes
POST /api/mail
POST /api/mail/contact
POST /api/people/child
POST /api/people/confirm-registration
POST /api/people/contact
POST /api/people/dance-classes
POST /api/people/{personId}/reset-password
POST /api/people/{personId}/school
POST /api/private-session-classes
POST /api/private-sessions
POST /api/rooms
POST /api/stripe
POST /api/stripe/validate
POST /api/subscriptions/mail-almost-expired
PUT /api/choregraphies/dimensions
PUT /api/dance-classes/students
PUT /api/events/book
PUT /api/events/students
PUT /api/events/{eventId}/confirm
PUT /api/events/{eventId}/unsubscribe
PUT /api/images/event/{eventId}
PUT /api/images/person/{personId}
PUT /api/images/school/{schoolId}
PUT /api/la/images/person/{personId}
PUT /api/steps/choregraphy/{choregraphyId}

Found on 2026-01-09 22:03

Severity: info
Fingerprint: 5733ddf49ff49cd1926e27d0926e27d0926e27d0926e27d0926e27d0926e27d0
```
Public Swagger UI/API detected at path: /webjars/swagger-ui/index.html
```
Found on 2025-12-30 14:22

Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 75.2.60.68
Domain: api.d-s-2.com
Port: 80
URL: http://api.d-s-2.com

First seen 2025-11-18 00:18
Last seen 2026-01-09 21:33
Open for 52 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1f5e22fb4b7d192f0a75c5c315c01d24f3e886a34939ab995
```
Public Swagger UI/API detected at path: /api/swagger.json - sample paths:
GET /api/admin/users
GET /api/orders/{orderNumber}
GET /api/products
POST /api/login
POST /api/logout
POST /api/orders
PUT /api/admin/users/{userId}
```
  Found on 2026-01-09 21:33
Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 75.2.60.68
Domain: picasso.api.staging.sdocs.com
Port: 80
URL: http://picasso.api.staging.sdocs.com

First seen 2025-10-17 00:41
Last seen 2026-01-09 19:48
Open for 84 days

Severity: info
Fingerprint: 5733ddf49ff49cd151e75e4b6fbd0de741919ef84711bfd088a4a80354b718b5

Public Swagger UI/API detected at path: /v3/api-docs - sample paths:
DELETE /document/{documentId}/user/{documentUserId}
DELETE /settings/{id}
DELETE /template/{id}/merge-data
DELETE /template/{id}/section/{sectionId}/content-block/{blockId}/image/{imageId}
DELETE /template/{id}/section/{sectionId}/content-block/{blockId}/merge-data/{ids}
DELETE /template/{templateId}/datasource/{datasourceId}
GET /customer/{customerId}/connected-app/{connectedAppId}/assets
GET /customer/{customerId}/connected-app/{connectedAppId}/objects
GET /customer/{customerId}/connectedapplication/{connectedAppId}
GET /customer/{customerId}/connectedapplication/{connectedAppId}/data/{objectApiName}
GET /customer/{customerId}/connectedapplication/{connectedAppId}/objects
GET /customer/{customerId}/connectedapplication/{connectedAppId}/objects/{apiName}/dataelements
GET /customer/{customerId}/connectedapplication/{connectedAppId}/objects/{apiName}/relationships
GET /customer/{customerId}/connectedapplications
GET /customer/{customerId}/objects/{objectId}/relationships/{relationshipId}/fields
GET /customer/{customerId}/objects/{objectId}/schema
GET /customer/{id}/datasource
GET /customer/{id}/templates
GET /dataElements/{dataElementId}/options
GET /datasource/{id}/refreshtime
GET /datasource/{id}/{objName}
GET /document-user/{documentId}/user/{userId}
GET /document/{documentId}/comments
GET /document/{documentId}/fieldConfig
GET /document/{documentId}/fieldConfig/{id}
GET /document/{documentId}/merge-data
GET /document/{documentId}/related-list/{relatedListId}
GET /document/{documentId}/section
GET /document/{documentId}/section/{documentSectionId}
GET /document/{documentId}/section/{documentSectionId}/contentBlock
GET /document/{documentId}/section/{documentSectionId}/contentBlock/{documentContentBlockId}
GET /document/{documentId}/users
GET /document/{documentId}/version
GET /document/{documentId}/version/{versionId}/section/{sectionId}/contentBlock/{contentBlockId}
GET /document/{documentId}/version/{versionId}/section/{sectionId}/contentBlock/{contentBlockId}/comment/{commentId}
GET /documents/all
GET /documents/customer/{customerId}
GET /documents/documentCards
GET /documents/file/{fileId}
GET /documents/generate/init
GET /documents/hub/{hubId}
GET /documents/invitedDocument/{id}
GET /documents/poll
GET /documents/template/{templateId}
GET /documents/{documentId}/generate/pdf
GET /documents/{documentId}/{functionality}/{domain}/validate-access
GET /documents/{hubId}/{objectId}/{templateId}
GET /documents/{id}
GET /documents/{id}/inputfields
GET /file
GET /settings
GET /settings/app
GET /template
GET /template/workFlow
GET /template/{id}
GET /template/{id}/datasource
GET /template/{id}/datasource/{dataSourceId}/elements/{objName}
GET /template/{id}/datasource/{dataSourceId}/type
GET /template/{id}/datasources/type
GET /template/{id}/elements/{objName}
GET /template/{id}/section/{sectionId}/content-block/{blockId}
GET /template/{id}/section/{sectionId}/content-block/{blockId}/merge-data
GET /template/{id}/section/{sectionId}/content-block/{blockId}/{fieldKey}/merge-data
GET /template/{id}/section/{sectionId}/content-blocks
GET /template/{id}/section/{sectionId}/related-list
GET /template/{templateId}/accessible-profile
GET /template/{templateId}/fieldConfig
GET /template/{templateId}/fieldConfig/{id}
GET /template/{templateId}/inputfields
GET /template/{templateId}/merge-data
GET /template/{templateId}/preview
GET /template/{templateId}/profile
GET /template/{templateId}/profile/{profileId}
GET /template/{templateId}/relations
GET /template/{templateId}/section
GET /template/{templateId}/section/{sectionId}
GET /template/{templateId}/section/{sectionId}/content-block/{blockId}/block-action
GET /template/{templateId}/section/{sectionId}/content-block/{blockId}/block-action/{blockActionId}
GET /template/{templateId}/section/{sectionId}/content-block/{blockId}/render-rule/{ruleId}
GET /template/{templateId}/section/{sectionId}/content-block/{blockId}/render-rule/{ruleId}/rule-detail/{ruleDetailId}
GET /v1/template/{id}/datasources/type
PATCH /customer/{customerId}/connected-app/{connectedAppId}/data/migrate
PATCH /customer/{customerId}/connected-app/{connectedAppId}/objects/{objectId}/fields/refresh
PATCH /customer/{customerId}/connected-app/{connectedAppId}/objects/{objectId}/relationships/refresh
PATCH /customer/{customerId}/connected-app/{connectedAppId}/objects/{objectId}/relationships/status
PATCH /customer/{customerId}/connected-app/{connectedAppId}/objects/{objectId}/relationships/{relationshipId}/fields/refresh
PATCH /customer/{customerId}/connected-app/{connectedAppId}/settings/objects/refresh
PATCH /customer/{customerId}/connectedapplication/{connectedAppId}/object/{apiName}/element
PATCH /customer/{customerId}/connectedapplication/{connectedAppId}/objects/{apiName}/relationships/{data_source_rel_id}
PATCH /customer/{customerId}/fields/status
PATCH /customer/{customerId}/objects/status
PATCH /document/{documentId}/section/{documentSectionId}/contentBlock/{documentContentBlockId}/refresh
PATCH /document/{documentId}/version/{versionId}
PATCH /documentUser/{documentId}/user/{userId}
PATCH /documents/lock/{documentId}
PATCH /documents/{id}/inputfields/all
PATCH /documents/{id}/refresh
PATCH /documents/{id}/restore
PATCH /template/{id}/section/{sectionId}/content-block/{blockId}/merge-data/{mergeId}
PATCH /template/{templateId}/profiles
POST /customer/{customerId}/connected-app/{connectedAppId}/objects/schema
POST /customer/{customerId}/connected-app/{connectedAppId}/settings/objects
POST /customer/{customerId}/connected-app/{connectedAppId}/settings/objects/{objectId}/schema
POST /customer/{customerId}/connectedapplication/{connectedAppId}/datasource
POST /customer/{customerId}/connectedapplication/{connectedAppId}/objects/{apiName}/relationship
POST /customer/{customerId}/connectedapplication/{connectedAppId}/refresh
POST /customer/{customerId}/runtime-datasource
POST /datasource/{dataSourceId}/elements
POST /document/{documentId}/user
POST /document/{documentId}/version/{versionId}/section/{sectionId}/contentBlock/{contentBlockId}/comment
POST /documents
POST /documents/generateDocument
POST /documents/{documentId}/retry
POST /template/cloneTemplateToNewUser/{newCustomerId}/{existingCustomerId}/{newUserId}
POST /template/{id}/datasource/{dataSourceId}/elements
POST /template/{id}/section
POST /template/{id}/section/{sectionId}/content-block
POST /template/{id}/section/{sectionId}/content-block/{blockId}/image
POST /template/{templateId}/clone
POST /template/{templateId}/publish
POST /template/{templateId}/section/{sectionId}/content-block/{blockId}/render-rule
POST /template/{templateId}/section/{sectionId}/content-block/{blockId}/render-rule/{ruleId}/rule-detail
POST /upload-file

Found on 2026-01-09 19:48

Severity: info
Fingerprint: 5733ddf49ff49cd151e75e4b6fbd0de741919ef84711bfd088a4a803820fb58d

Public Swagger UI/API detected at path: /v3/api-docs - sample paths:
DELETE /document/{documentId}/user/{documentUserId}
DELETE /settings/{id}
DELETE /template/{id}/merge-data
DELETE /template/{id}/section/{sectionId}/content-block/{blockId}/image/{imageId}
DELETE /template/{id}/section/{sectionId}/content-block/{blockId}/merge-data/{ids}
DELETE /template/{templateId}/datasource/{datasourceId}
GET /customer/{customerId}/connected-app/{connectedAppId}/assets
GET /customer/{customerId}/connected-app/{connectedAppId}/objects
GET /customer/{customerId}/connectedapplication/{connectedAppId}
GET /customer/{customerId}/connectedapplication/{connectedAppId}/data/{objectApiName}
GET /customer/{customerId}/connectedapplication/{connectedAppId}/objects
GET /customer/{customerId}/connectedapplication/{connectedAppId}/objects/{apiName}/dataelements
GET /customer/{customerId}/connectedapplication/{connectedAppId}/objects/{apiName}/relationships
GET /customer/{customerId}/connectedapplications
GET /customer/{customerId}/objects/{objectId}/relationships/{relationshipId}/fields
GET /customer/{customerId}/objects/{objectId}/schema
GET /customer/{id}/datasource
GET /customer/{id}/templates
GET /dataElements/{dataElementId}/options
GET /datasource/{id}/refreshtime
GET /datasource/{id}/{objName}
GET /document-user/{documentId}/user/{userId}
GET /document/{documentId}/comments
GET /document/{documentId}/fieldConfig
GET /document/{documentId}/fieldConfig/{id}
GET /document/{documentId}/merge-data
GET /document/{documentId}/related-list/{relatedListId}
GET /document/{documentId}/section
GET /document/{documentId}/section/{documentSectionId}
GET /document/{documentId}/section/{documentSectionId}/contentBlock
GET /document/{documentId}/section/{documentSectionId}/contentBlock/{documentContentBlockId}
GET /document/{documentId}/users
GET /document/{documentId}/version
GET /document/{documentId}/version/{versionId}/section/{sectionId}/contentBlock/{contentBlockId}
GET /document/{documentId}/version/{versionId}/section/{sectionId}/contentBlock/{contentBlockId}/comment/{commentId}
GET /documents
GET /documents/all
GET /documents/customer/{customerId}
GET /documents/documentCards
GET /documents/file/{fileId}
GET /documents/generate/init
GET /documents/hub/{hubId}
GET /documents/invitedDocument/{id}
GET /documents/poll
GET /documents/template/{templateId}
GET /documents/{documentId}/generate/pdf
GET /documents/{documentId}/{functionality}/{domain}/validate-access
GET /documents/{hubId}/{objectId}/{templateId}
GET /documents/{id}
GET /documents/{id}/inputfields
GET /file
GET /settings
GET /settings/app
GET /template
GET /template/workFlow
GET /template/{id}
GET /template/{id}/datasource
GET /template/{id}/datasource/{dataSourceId}/elements/{objName}
GET /template/{id}/datasource/{dataSourceId}/type
GET /template/{id}/datasources/type
GET /template/{id}/elements/{objName}
GET /template/{id}/section/{sectionId}/content-block/{blockId}
GET /template/{id}/section/{sectionId}/content-block/{blockId}/merge-data
GET /template/{id}/section/{sectionId}/content-block/{blockId}/{fieldKey}/merge-data
GET /template/{id}/section/{sectionId}/content-blocks
GET /template/{id}/section/{sectionId}/related-list
GET /template/{templateId}/accessible-profile
GET /template/{templateId}/fieldConfig
GET /template/{templateId}/fieldConfig/{id}
GET /template/{templateId}/inputfields
GET /template/{templateId}/merge-data
GET /template/{templateId}/preview
GET /template/{templateId}/profile
GET /template/{templateId}/profile/{profileId}
GET /template/{templateId}/relations
GET /template/{templateId}/section
GET /template/{templateId}/section/{sectionId}
GET /template/{templateId}/section/{sectionId}/content-block/{blockId}/block-action
GET /template/{templateId}/section/{sectionId}/content-block/{blockId}/block-action/{blockActionId}
GET /template/{templateId}/section/{sectionId}/content-block/{blockId}/render-rule/{ruleId}
GET /template/{templateId}/section/{sectionId}/content-block/{blockId}/render-rule/{ruleId}/rule-detail/{ruleDetailId}
GET /v1/template/{id}/datasources/type
PATCH /customer/{customerId}/connected-app/{connectedAppId}/data/migrate
PATCH /customer/{customerId}/connected-app/{connectedAppId}/objects/{objectId}/fields/refresh
PATCH /customer/{customerId}/connected-app/{connectedAppId}/objects/{objectId}/relationships/refresh
PATCH /customer/{customerId}/connected-app/{connectedAppId}/objects/{objectId}/relationships/status
PATCH /customer/{customerId}/connected-app/{connectedAppId}/objects/{objectId}/relationships/{relationshipId}/fields/refresh
PATCH /customer/{customerId}/connected-app/{connectedAppId}/settings/objects/refresh
PATCH /customer/{customerId}/connectedapplication/{connectedAppId}/object/{apiName}/element
PATCH /customer/{customerId}/connectedapplication/{connectedAppId}/objects/{apiName}/relationships/{data_source_rel_id}
PATCH /customer/{customerId}/fields/status
PATCH /customer/{customerId}/objects/status
PATCH /document/{documentId}/section/{documentSectionId}/contentBlock/{documentContentBlockId}/refresh
PATCH /document/{documentId}/version/{versionId}
PATCH /documentUser/{documentId}/user/{userId}
PATCH /documents/lock/{documentId}
PATCH /documents/{id}/inputfields/all
PATCH /documents/{id}/refresh
PATCH /documents/{id}/restore
PATCH /template/{id}/section/{sectionId}/content-block/{blockId}/merge-data/{mergeId}
PATCH /template/{templateId}/profiles
POST /customer/{customerId}/connected-app/{connectedAppId}/objects/schema
POST /customer/{customerId}/connected-app/{connectedAppId}/settings/objects
POST /customer/{customerId}/connected-app/{connectedAppId}/settings/objects/{objectId}/schema
POST /customer/{customerId}/connectedapplication/{connectedAppId}/datasource
POST /customer/{customerId}/connectedapplication/{connectedAppId}/objects/{apiName}/relationship
POST /customer/{customerId}/connectedapplication/{connectedAppId}/refresh
POST /customer/{customerId}/runtime-datasource
POST /datasource/{dataSourceId}/elements
POST /document/{documentId}/user
POST /document/{documentId}/version/{versionId}/section/{sectionId}/contentBlock/{contentBlockId}/comment
POST /documents/generateDocument
POST /documents/{documentId}/retry
POST /template/cloneTemplateToNewUser/{newCustomerId}/{existingCustomerId}/{newUserId}
POST /template/{id}/datasource/{dataSourceId}/elements
POST /template/{id}/section
POST /template/{id}/section/{sectionId}/content-block
POST /template/{id}/section/{sectionId}/content-block/{blockId}/image
POST /template/{templateId}/clone
POST /template/{templateId}/publish
POST /template/{templateId}/section/{sectionId}/content-block/{blockId}/render-rule
POST /template/{templateId}/section/{sectionId}/content-block/{blockId}/render-rule/{ruleId}/rule-detail
POST /upload-file

Found on 2025-12-12 18:01

Severity: info
Fingerprint: 5733ddf49ff49cd151e75e4b6fbd0de741919ef84711bfd088a4a8039c6c2b6f

Public Swagger UI/API detected at path: /v3/api-docs - sample paths:
DELETE /document/{documentId}/user/{documentUserId}
DELETE /settings/{id}
DELETE /template/{id}/merge-data
DELETE /template/{id}/section/{sectionId}/content-block/{blockId}/image/{imageId}
DELETE /template/{id}/section/{sectionId}/content-block/{blockId}/merge-data/{ids}
DELETE /template/{templateId}/datasource/{datasourceId}
GET /customer/{customerId}/connected-app/{connectedAppId}/assets
GET /customer/{customerId}/connected-app/{connectedAppId}/objects
GET /customer/{customerId}/connectedapplication/{connectedAppId}
GET /customer/{customerId}/connectedapplication/{connectedAppId}/data/{objectApiName}
GET /customer/{customerId}/connectedapplication/{connectedAppId}/objects
GET /customer/{customerId}/connectedapplication/{connectedAppId}/objects/{apiName}/dataelements
GET /customer/{customerId}/connectedapplication/{connectedAppId}/objects/{apiName}/relationships
GET /customer/{customerId}/connectedapplications
GET /customer/{customerId}/objects/{objectId}/related-objects/{relatedObjectId}/fields
GET /customer/{customerId}/objects/{objectId}/schema
GET /customer/{id}/datasource
GET /customer/{id}/templates
GET /dataElements/{dataElementId}/options
GET /datasource/{id}/refreshtime
GET /datasource/{id}/{objName}
GET /document-user/{documentId}/user/{userId}
GET /document/{documentId}/comments
GET /document/{documentId}/fieldConfig
GET /document/{documentId}/fieldConfig/{id}
GET /document/{documentId}/merge-data
GET /document/{documentId}/related-list/{relatedListId}
GET /document/{documentId}/section
GET /document/{documentId}/section/{documentSectionId}
GET /document/{documentId}/section/{documentSectionId}/contentBlock
GET /document/{documentId}/section/{documentSectionId}/contentBlock/{documentContentBlockId}
GET /document/{documentId}/users
GET /document/{documentId}/version
GET /document/{documentId}/version/{versionId}/section/{sectionId}/contentBlock/{contentBlockId}
GET /document/{documentId}/version/{versionId}/section/{sectionId}/contentBlock/{contentBlockId}/comment/{commentId}
GET /documents
GET /documents/all
GET /documents/customer/{customerId}
GET /documents/documentCards
GET /documents/file/{fileId}
GET /documents/generate/init
GET /documents/hub/{hubId}
GET /documents/invitedDocument/{id}
GET /documents/poll
GET /documents/template/{templateId}
GET /documents/{documentId}/generate/pdf
GET /documents/{documentId}/{functionality}/{domain}/validate-access
GET /documents/{hubId}/{objectId}/{templateId}
GET /documents/{id}
GET /documents/{id}/inputfields
GET /file
GET /settings
GET /settings/app
GET /template
GET /template/workFlow
GET /template/{id}
GET /template/{id}/datasource
GET /template/{id}/datasource/{dataSourceId}/elements/{objName}
GET /template/{id}/datasource/{dataSourceId}/type
GET /template/{id}/datasources/type
GET /template/{id}/elements/{objName}
GET /template/{id}/section/{sectionId}/content-block/{blockId}
GET /template/{id}/section/{sectionId}/content-block/{blockId}/merge-data
GET /template/{id}/section/{sectionId}/content-block/{blockId}/{fieldKey}/merge-data
GET /template/{id}/section/{sectionId}/content-blocks
GET /template/{id}/section/{sectionId}/related-list
GET /template/{templateId}/accessible-profile
GET /template/{templateId}/fieldConfig
GET /template/{templateId}/fieldConfig/{id}
GET /template/{templateId}/inputfields
GET /template/{templateId}/merge-data
GET /template/{templateId}/preview
GET /template/{templateId}/profile
GET /template/{templateId}/profile/{profileId}
GET /template/{templateId}/relations
GET /template/{templateId}/section
GET /template/{templateId}/section/{sectionId}
GET /template/{templateId}/section/{sectionId}/content-block/{blockId}/block-action
GET /template/{templateId}/section/{sectionId}/content-block/{blockId}/block-action/{blockActionId}
GET /template/{templateId}/section/{sectionId}/content-block/{blockId}/render-rule/{ruleId}
GET /template/{templateId}/section/{sectionId}/content-block/{blockId}/render-rule/{ruleId}/rule-detail/{ruleDetailId}
GET /v1/template/{id}/datasources/type
PATCH /customer/{customerId}/connected-app/{connectedAppId}/data/migrate
PATCH /customer/{customerId}/connected-app/{connectedAppId}/objects/{objectId}/fields/refresh
PATCH /customer/{customerId}/connected-app/{connectedAppId}/objects/{objectId}/related-objects/{relatedObjectId}/fields/refresh
PATCH /customer/{customerId}/connected-app/{connectedAppId}/objects/{objectId}/relationship/refresh
PATCH /customer/{customerId}/connected-app/{connectedAppId}/objects/{objectId}/relationship/status
PATCH /customer/{customerId}/connected-app/{connectedAppId}/settings/objects/refresh
PATCH /customer/{customerId}/connectedapplication/{connectedAppId}/object/{apiName}/element
PATCH /customer/{customerId}/connectedapplication/{connectedAppId}/objects/{apiName}/relationships/{data_source_rel_id}
PATCH /customer/{customerId}/fields/status
PATCH /customer/{customerId}/objects/status
PATCH /document/{documentId}/section/{documentSectionId}/contentBlock/{documentContentBlockId}/refresh
PATCH /document/{documentId}/version/{versionId}
PATCH /documentUser/{documentId}/user/{userId}
PATCH /documents/lock/{documentId}
PATCH /documents/{id}/inputfields/all
PATCH /documents/{id}/refresh
PATCH /documents/{id}/restore
PATCH /template/{id}/section/{sectionId}/content-block/{blockId}/merge-data/{mergeId}
PATCH /template/{templateId}/profiles
POST /customer/{customerId}/connected-app/{connectedAppId}/objects/schema
POST /customer/{customerId}/connected-app/{connectedAppId}/settings/objects
POST /customer/{customerId}/connected-app/{connectedAppId}/settings/objects/{objectId}/schema
POST /customer/{customerId}/connectedapplication/{connectedAppId}/datasource
POST /customer/{customerId}/connectedapplication/{connectedAppId}/objects/{apiName}/relationship
POST /customer/{customerId}/connectedapplication/{connectedAppId}/refresh
POST /customer/{customerId}/runtime-datasource
POST /datasource/{dataSourceId}/elements
POST /document/{documentId}/user
POST /document/{documentId}/version/{versionId}/section/{sectionId}/contentBlock/{contentBlockId}/comment
POST /documents/generateDocument
POST /documents/{documentId}/retry
POST /template/cloneTemplateToNewUser/{newCustomerId}/{existingCustomerId}/{newUserId}
POST /template/{id}/datasource/{dataSourceId}/elements
POST /template/{id}/section
POST /template/{id}/section/{sectionId}/content-block
POST /template/{id}/section/{sectionId}/content-block/{blockId}/image
POST /template/{templateId}/clone
POST /template/{templateId}/publish
POST /template/{templateId}/section/{sectionId}/content-block/{blockId}/render-rule
POST /template/{templateId}/section/{sectionId}/content-block/{blockId}/render-rule/{ruleId}/rule-detail
POST /upload-file

Found on 2025-10-17 00:41

Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 75.2.60.68
Domain: www.fraiza.xyz
Port: 80
URL: http://www.fraiza.xyz

First seen 2025-11-26 00:31
Last seen 2026-01-09 19:06
Open for 44 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109
```
Public Swagger UI/API detected at path: /api-docs/swagger.json
```
  Found on 2026-01-09 19:06
Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 75.2.60.68
Domain: api.kidcoin.com
Port: 80
URL: http://api.kidcoin.com

First seen 2025-12-09 00:31
Last seen 2026-01-09 18:56
Open for 31 days

Severity: info
Fingerprint: 5733ddf49ff49cd1b885ff4376ba4bb894bd3e7e75b53c8b7b5c12cf7fc6bf21

Public Swagger UI/API detected at path: /swagger.json - sample paths:
DELETE /allowances/{uid}/{aid}
DELETE /auth/delete/account
DELETE /groups/{fid}/
DELETE /groups/{gid}/adults/{uid}
DELETE /groups/{gid}/members/{uid}
GET /allowances/{kid_id}
GET /applications/{id}
GET /auth/kid/{kid}
GET /auth/profile
GET /auth/profile/{user_id}
GET /auth/token
GET /balance/
GET /balance/adult/{kid_id}/stats/{date}
GET /balance/kid/stats/{date}
GET /balance/{uid}
GET /chores/adult/created
GET /chores/adult/finished
GET /chores/adult/popular
GET /chores/adult/{kid}/created
GET /chores/adult/{kid}/finished
GET /chores/kid
GET /chores/kid/current
GET /chores/kid/finished
GET /chores/{id}
GET /dashboard/auth/profile
GET /dashboard/faq
GET /dashboard/micros
GET /dashboard/micros/applicants
GET /dashboard/micros/applicants/{applicant_id}
GET /dashboard/micros/applications
GET /dashboard/micros/popular
GET /dashboard/micros/{micro_id}
GET /dashboard/micros/{micro_id}/applications
GET /dashboard/micros/{micro_id}/overview
GET /dashboard/statistics
GET /dashboard/super-admin/integrations/bfc/purchases
GET /dashboard/super-admin/sponsors
GET /dashboard/super-admin/sponsors/applications
GET /dashboard/super-admin/statistics/{sponsor_id}
GET /goals/adult/current
GET /goals/adult/finished
GET /goals/adult/{goal_id}/details
GET /goals/adult/{kid_id}/current
GET /goals/adult/{kid_id}/finished
GET /goals/kid
GET /goals/kid/current
GET /goals/kid/finished
GET /goals/kid/popular
GET /goals/kid/supporters
GET /goals/kid/{goal_id}
GET /goals/kid/{goal_id}/details
GET /goals/{id}
GET /groups/
GET /groups/adults/
GET /groups/validate/{code}
GET /groups/{fid}/adults/
GET /groups/{group_id}/kids/{kid_id}
GET /images/available
GET /integrations/bfc/products/{product_code}
GET /integrations/bfc/transactions/{code}
GET /integrations/bsp/profile
GET /locations/
GET /micros/adult/applications/created
GET /micros/adult/applications/finished
GET /micros/adult/popular
GET /micros/adult/{kid_id}/applications/created
GET /micros/adult/{kid_id}/applications/finished
GET /micros/kid/applications/created
GET /micros/kid/applications/finished
GET /micros/kid/popular
GET /micros/{id}
GET /notifications/v2
GET /notifications/v3
GET /purchases/history
GET /purchases/products
POST /auth/firebase
POST /auth/kid
POST /auth/kid/
POST /auth/verify
POST /chores/adult
POST /chores/adult/{cid}
POST /chores/adult/{cid}/complete
POST /chores/kid/proposal
POST /chores/kid/{cid}/complete
POST /dashboard/auth/apply
POST /dashboard/auth/changePassword
POST /dashboard/auth/changePassword/code
POST /dashboard/auth/forgotPassword
POST /dashboard/auth/login
POST /dashboard/micros/action
POST /dashboard/micros/applications/action
POST /dashboard/micros/{micro_id}/action
POST /dashboard/super-admin/disable/{sponsor_id}
POST /dashboard/super-admin/enable/{sponsor_id}
POST /dashboard/super-admin/sponsors/applications/{app_id}/decision
POST /goals/adult/{goal_id}/fund
POST /goals/adult/{goal_id}/payout
POST /goals/adult/{group_id}/goal/{goal_id}
POST /goals/adult/{kid_id}
POST /goals/kid/{goal_id}/fund
POST /goals/kid/{goal_id}/support_request
POST /groups/join
POST /groups/{gid}/members/
POST /groups/{group_id}/kids/
POST /images/upload
POST /integrations/bfc/products/{product_code}/buy
POST /integrations/bsp/auth
POST /integrations/bsp/purchase
POST /micros/adult/{micro_id}/apply/{kid_id}
POST /micros/adult/{micro_id}/decline/{kid_id}
POST /micros/kid/{mid}/request
POST /notifications/token
POST /notifications/v2/{nid}/approve
POST /notifications/v2/{nid}/decline
POST /notifications/v3/{nid}/approve
POST /notifications/v3/{nid}/decline
POST /purchases/verify
POST /transactions/adult/send/{receiver_id}
POST /transactions/adult/withdraw/{kid}
POST /transactions/kid/cashout
POST /transactions/kid/send/{receiver_id}

Found on 2026-01-09 18:56

Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 75.2.60.68
Domain: readallaboutit.com.au
Port: 80
URL: http://readallaboutit.com.au

First seen 2025-11-24 00:36
Last seen 2026-01-09 18:37
Open for 46 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1f5e22fb40b9e22572f7c9a8c941b0606be38a90bd8190c59
```
Public Swagger UI/API detected at path: /api/swagger.json - sample paths:
GET /api/v1/author/{id}
GET /api/v1/author/{id}/titles
GET /api/v1/authors
GET /api/v1/chapter/{id}
GET /api/v1/chapters
GET /api/v1/newspaper/{id}
GET /api/v1/newspaper/{id}/titles
GET /api/v1/newspapers
GET /api/v1/title/{id}
GET /api/v1/title/{id}/chapters
GET /api/v1/titles
```
  Found on 2026-01-09 18:37
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 75.2.60.68
Domain: search-api.immigrationbrief.com
Port: 443
URL: https://search-api.immigrationbrief.com

First seen 2025-12-12 00:08
Last seen 2026-01-09 17:39
Open for 28 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-01-09 17:39
Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 75.2.60.68
Domain: api.bo.wellywork.com
Port: 443
URL: https://api.bo.wellywork.com

First seen 2025-11-16 02:04
Last seen 2026-01-09 17:35
Open for 54 days

Severity: info
Fingerprint: 5733ddf49ff49cd151e75e4b936c53ec32c1356e8afd8f49e6e3762ce71eb22f

Public Swagger UI/API detected at path: /v3/api-docs - sample paths:
DELETE /bo/user-account/delete-by-owner/{id}
GET /bo/analytics/categories
GET /bo/analytics/kpis
GET /bo/analytics/revenues
GET /bo/analytics/trends
GET /bo/asset_users
GET /bo/asset_users/select
GET /bo/asset_users/{id}
GET /bo/auth
GET /bo/auth/logout
GET /bo/auth/refresh
GET /bo/batch/executions
GET /bo/batch/history/{batchType}
GET /bo/batch/last-execution/{batchType}
GET /bo/batch/recent-failures
GET /bo/batch/transaction-timeout/count
GET /bo/boxs
GET /bo/campaigns
GET /bo/category
GET /bo/companies
GET /bo/companies/names
GET /bo/companies/{id}
GET /bo/customers
GET /bo/customers/by-company/{companyId}
GET /bo/customers/searchBy
GET /bo/customers/{id}
GET /bo/dashboard/allAccountCuNb
GET /bo/dashboard/allAccountSeNb
GET /bo/dashboard/allActifAccountCuNb
GET /bo/dashboard/allActifAccountCuNbByLevel
GET /bo/dashboard/allActifAccountSeNb
GET /bo/dashboard/balance
GET /bo/dashboard/companyNumber
GET /bo/dashboard/nbOrders
GET /bo/dashboard/nbVouchers
GET /bo/dashboard/stats
GET /bo/dashboard/totalAmountByLevel
GET /bo/dashboard/totalAmountBySeller
GET /bo/dashboard/totalCommission
GET /bo/dashboard/totalCommissionCustomer
GET /bo/giftcards
GET /bo/offers
GET /bo/orders
GET /bo/orders/{orderId}
GET /bo/parameters/{name}
GET /bo/pictures/category-icon/{id}
GET /bo/pictures/customer/{id}
GET /bo/pictures/seller-logo/{id}
GET /bo/pictures/{id}
GET /bo/products
GET /bo/products/items
GET /bo/sellers
GET /bo/sellers/searchBy
GET /bo/sellers/{id}
GET /bo/sellers/{id}/chiffre-affaire
GET /bo/sellers/{id}/solde
GET /bo/sponsorship-code
GET /bo/transactions
GET /bo/transactions/per-hour
GET /bo/transactions/totals
GET /bo/transactions/{personId}
GET /bo/user-account
GET /bo/user-account/active-by-owner/{id}
GET /bo/user-account/block-by-owner/{id}
GET /bo/user-account/owner/{ownerId}
GET /bo/user-account/restore-by-owner/{id}
GET /bo/vouchers/{idPerson}/{type}
GET /bo/wallet/customer-solde/{id}
POST /bo/asset_users/password_reset_email
POST /bo/batch/transaction-timeout
POST /bo/batch/voucher-reminders
POST /bo/companies/account-upgrade
POST /bo/companies/vouchers
POST /bo/giftcards/create-batch
POST /bo/giftcards/{id}/destroy
POST /bo/notifications/broadcast
POST /bo/orders/{orderId}/cancel
POST /bo/vouchers
POST /bo/wallet/cashout
PUT /bo/asset_users/block/{id}
PUT /bo/asset_users/password_reset
PUT /bo/asset_users/password_reset/{id}
PUT /bo/asset_users/removed/{id}
PUT /bo/asset_users/unblock/{id}
PUT /bo/companies/update-subscription-status/{levelId}
PUT /bo/offers/{idOffer}
PUT /bo/orders/{orderId}/status
PUT /bo/parameters/{name}/{newValue}
PUT /bo/products/items/{id}
PUT /bo/products/{id}
PUT /bo/sponsorship-code/{idSponsorshipCode}
PUT /bo/transactions/return/{transactionId}
PUT /bo/user-account/block/{id}
PUT /bo/user-account/unblock/{id}

Found on 2026-01-09 17:35

Severity: info
Fingerprint: 5733ddf49ff49cd151e75e4b936c53ec32c1356e8afd8f49e6e3762c8e22d23c

Public Swagger UI/API detected at path: /v3/api-docs - sample paths:
DELETE /bo/user-account/delete-by-owner/{id}
GET /bo/analytics/categories
GET /bo/analytics/kpis
GET /bo/analytics/revenues
GET /bo/analytics/trends
GET /bo/asset_users
GET /bo/asset_users/select
GET /bo/asset_users/{id}
GET /bo/auth
GET /bo/auth/logout
GET /bo/auth/refresh
GET /bo/batch/executions
GET /bo/batch/history/{batchType}
GET /bo/batch/last-execution/{batchType}
GET /bo/batch/recent-failures
GET /bo/batch/transaction-timeout/count
GET /bo/boxs
GET /bo/category
GET /bo/companies
GET /bo/companies/names
GET /bo/companies/{id}
GET /bo/customers
GET /bo/customers/by-company/{companyId}
GET /bo/customers/searchBy
GET /bo/customers/{id}
GET /bo/dashboard/allAccountCuNb
GET /bo/dashboard/allAccountSeNb
GET /bo/dashboard/allActifAccountCuNb
GET /bo/dashboard/allActifAccountCuNbByLevel
GET /bo/dashboard/allActifAccountSeNb
GET /bo/dashboard/balance
GET /bo/dashboard/companyNumber
GET /bo/dashboard/nbOrders
GET /bo/dashboard/nbVouchers
GET /bo/dashboard/stats
GET /bo/dashboard/totalAmountByLevel
GET /bo/dashboard/totalAmountBySeller
GET /bo/dashboard/totalCommission
GET /bo/dashboard/totalCommissionCustomer
GET /bo/giftcards
GET /bo/offers
GET /bo/orders
GET /bo/orders/{orderId}
GET /bo/parameters/{name}
GET /bo/pictures/category-icon/{id}
GET /bo/pictures/customer/{id}
GET /bo/pictures/seller-logo/{id}
GET /bo/pictures/{id}
GET /bo/products
GET /bo/products/items
GET /bo/sellers
GET /bo/sellers/searchBy
GET /bo/sellers/{id}
GET /bo/sellers/{id}/chiffre-affaire
GET /bo/sellers/{id}/solde
GET /bo/sponsorship-code
GET /bo/transactions
GET /bo/transactions/per-hour
GET /bo/transactions/totals
GET /bo/transactions/{personId}
GET /bo/user-account
GET /bo/user-account/active-by-owner/{id}
GET /bo/user-account/block-by-owner/{id}
GET /bo/user-account/owner/{ownerId}
GET /bo/user-account/restore-by-owner/{id}
GET /bo/vouchers/{idPerson}/{type}
GET /bo/wallet/customer-solde/{id}
POST /bo/asset_users/password_reset_email
POST /bo/batch/transaction-timeout
POST /bo/batch/voucher-reminders
POST /bo/companies/account-upgrade
POST /bo/companies/vouchers
POST /bo/giftcards/create-batch
POST /bo/giftcards/{id}/destroy
POST /bo/orders/{orderId}/cancel
POST /bo/vouchers
POST /bo/wallet/cashout
PUT /bo/asset_users/block/{id}
PUT /bo/asset_users/password_reset
PUT /bo/asset_users/password_reset/{id}
PUT /bo/asset_users/removed/{id}
PUT /bo/asset_users/unblock/{id}
PUT /bo/companies/update-subscription-status/{levelId}
PUT /bo/offers/{idOffer}
PUT /bo/orders/{orderId}/status
PUT /bo/parameters/{name}/{newValue}
PUT /bo/products/items/{id}
PUT /bo/products/{id}
PUT /bo/sponsorship-code/{idSponsorshipCode}
PUT /bo/transactions/return/{transactionId}
PUT /bo/user-account/block/{id}
PUT /bo/user-account/unblock/{id}

Found on 2025-11-30 18:07

Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 75.2.60.68
Domain: label-studio.withhoist.com
Port: 80
URL: http://label-studio.withhoist.com

First seen 2025-10-21 00:10
Last seen 2026-01-09 17:31
Open for 80 days

Severity: info
Fingerprint: 5733ddf49ff49cd1b885ff43be20b98f207cc01c35f8aca3619ab1b44ff541f6

Public Swagger UI/API detected at path: /swagger.json - sample paths:
DELETE /api/dm/views/reset/
GET /api/annotations/{id}/
GET /api/current-user/token
GET /api/current-user/whoami
GET /api/dm/actions/
GET /api/dm/columns/
GET /api/dm/project/
GET /api/dm/views/
GET /api/dm/views/{id}/
GET /api/import/file-upload/{id}
GET /api/invite
GET /api/label_links/
GET /api/label_links/{id}/
GET /api/labels/
GET /api/labels/{id}/
GET /api/ml/
GET /api/ml/{id}
GET /api/ml/{id}/versions
GET /api/organizations/
GET /api/organizations/{id}
GET /api/organizations/{id}/memberships
GET /api/predictions/
GET /api/predictions/{id}/
GET /api/projects/
GET /api/projects/{id}/
GET /api/projects/{id}/export
GET /api/projects/{id}/export/formats
GET /api/projects/{id}/exports/
GET /api/projects/{id}/exports/{export_pk}
GET /api/projects/{id}/exports/{export_pk}/download
GET /api/projects/{id}/file-uploads
GET /api/projects/{id}/tasks/
GET /api/storages/
GET /api/storages/azure/
GET /api/storages/azure/{id}
GET /api/storages/export
GET /api/storages/export/azure
GET /api/storages/export/azure/{id}
GET /api/storages/export/gcs
GET /api/storages/export/gcs/{id}
GET /api/storages/export/localfiles
GET /api/storages/export/localfiles/{id}
GET /api/storages/export/redis
GET /api/storages/export/redis/{id}
GET /api/storages/export/s3
GET /api/storages/export/s3/{id}
GET /api/storages/export/types
GET /api/storages/gcs/
GET /api/storages/gcs/{id}
GET /api/storages/localfiles/
GET /api/storages/localfiles/{id}
GET /api/storages/redis/
GET /api/storages/redis/{id}
GET /api/storages/s3/
GET /api/storages/s3/{id}
GET /api/storages/types
GET /api/tasks/
GET /api/tasks/{id}/
GET /api/tasks/{id}/annotations/
GET /api/users/
GET /api/users/{id}/
GET /api/webhooks/
GET /api/webhooks/info/
GET /api/webhooks/{id}/
POST /api/current-user/reset-token/
POST /api/invite/reset-token
POST /api/labels/bulk
POST /api/ml/{id}/interactive-annotating
POST /api/ml/{id}/train
POST /api/projects/validate/
POST /api/projects/{id}/import
POST /api/projects/{id}/validate/
POST /api/storages/azure/validate
POST /api/storages/azure/{id}/sync
POST /api/storages/export/azure/validate
POST /api/storages/export/azure/{id}/sync
POST /api/storages/export/gcs/validate
POST /api/storages/export/gcs/{id}/sync
POST /api/storages/export/localfiles/validate
POST /api/storages/export/localfiles/{id}/sync
POST /api/storages/export/redis/validate
POST /api/storages/export/redis/{id}/sync
POST /api/storages/export/s3/validate
POST /api/storages/export/s3/{id}/sync
POST /api/storages/gcs/validate
POST /api/storages/gcs/{id}/sync
POST /api/storages/localfiles/validate
POST /api/storages/localfiles/{id}/sync
POST /api/storages/redis/validate
POST /api/storages/redis/{id}/sync
POST /api/storages/s3/validate
POST /api/storages/s3/{id}/sync

Found on 2026-01-09 17:31

Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 75.2.60.68
Domain: picasso.api.dev.sdocs.com
Port: 443
URL: https://picasso.api.dev.sdocs.com

First seen 2025-12-07 01:44
Last seen 2026-01-09 17:06
Open for 33 days

Severity: info
Fingerprint: 5733ddf49ff49cd151e75e4b6fbd0de7387ba3c7c29d732eeaa3eacb1941ec5f

Public Swagger UI/API detected at path: /v3/api-docs - sample paths:
DELETE /document/{documentId}/user/{documentUserId}
DELETE /template/{id}/merge-data
DELETE /template/{id}/section/{sectionId}/content-block/{blockId}/image/{imageId}
DELETE /template/{id}/section/{sectionId}/content-block/{blockId}/merge-data/{ids}
DELETE /template/{templateId}/datasource/{datasourceId}
GET /customer/{customerId}/connected-app/{connectedAppId}/assets
GET /customer/{customerId}/connected-app/{connectedAppId}/objects
GET /customer/{customerId}/connectedapplication/{connectedAppId}
GET /customer/{customerId}/connectedapplication/{connectedAppId}/data/{objectApiName}
GET /customer/{customerId}/connectedapplication/{connectedAppId}/objects
GET /customer/{customerId}/connectedapplication/{connectedAppId}/objects/{apiName}/dataelements
GET /customer/{customerId}/connectedapplication/{connectedAppId}/objects/{apiName}/relationships
GET /customer/{customerId}/connectedapplications
GET /customer/{customerId}/objects/{objectId}/relationships/{relationshipId}/fields
GET /customer/{customerId}/objects/{objectId}/schema
GET /customer/{id}/datasource
GET /customer/{id}/templates
GET /dataElements/{dataElementId}/options
GET /datasource/{id}/refreshtime
GET /datasource/{id}/{objName}
GET /document-user/{documentId}/user/{userId}
GET /document/{documentId}/comments
GET /document/{documentId}/fieldConfig
GET /document/{documentId}/fieldConfig/{id}
GET /document/{documentId}/merge-data
GET /document/{documentId}/related-list/{relatedListId}
GET /document/{documentId}/section
GET /document/{documentId}/section/{documentSectionId}
GET /document/{documentId}/section/{documentSectionId}/contentBlock
GET /document/{documentId}/section/{documentSectionId}/contentBlock/{documentContentBlockId}
GET /document/{documentId}/users
GET /document/{documentId}/version
GET /document/{documentId}/version/{versionId}/section/{sectionId}/contentBlock/{contentBlockId}
GET /document/{documentId}/version/{versionId}/section/{sectionId}/contentBlock/{contentBlockId}/comment/{commentId}
GET /documents/all
GET /documents/customer/{customerId}
GET /documents/documentCards
GET /documents/file/{fileId}
GET /documents/generate/init
GET /documents/hub/{hubId}
GET /documents/invitedDocument/{id}
GET /documents/poll
GET /documents/template/{templateId}
GET /documents/{documentId}/generate/pdf
GET /documents/{documentId}/{functionality}/{domain}/validate-access
GET /documents/{hubId}/{objectId}/{templateId}
GET /documents/{id}
GET /documents/{id}/inputfields
GET /file
GET /settings/app
GET /settings/usage-statistics
GET /settings/variables
GET /settings/{category}
GET /template
GET /template/workFlow
GET /template/{id}
GET /template/{id}/datasource
GET /template/{id}/datasource/{dataSourceId}/elements/{objName}
GET /template/{id}/datasource/{dataSourceId}/type
GET /template/{id}/datasources/type
GET /template/{id}/elements/{objName}
GET /template/{id}/section/{sectionId}/content-block/{blockId}
GET /template/{id}/section/{sectionId}/content-block/{blockId}/merge-data
GET /template/{id}/section/{sectionId}/content-block/{blockId}/{fieldKey}/merge-data
GET /template/{id}/section/{sectionId}/content-blocks
GET /template/{id}/section/{sectionId}/related-list
GET /template/{templateId}/accessible-profile
GET /template/{templateId}/fieldConfig
GET /template/{templateId}/fieldConfig/{id}
GET /template/{templateId}/inputfields
GET /template/{templateId}/merge-data
GET /template/{templateId}/preview
GET /template/{templateId}/profile
GET /template/{templateId}/profile/{profileId}
GET /template/{templateId}/relations
GET /template/{templateId}/section
GET /template/{templateId}/section/{sectionId}
GET /template/{templateId}/section/{sectionId}/content-block/{blockId}/block-action
GET /template/{templateId}/section/{sectionId}/content-block/{blockId}/block-action/{blockActionId}
GET /template/{templateId}/section/{sectionId}/content-block/{blockId}/render-rule/{ruleId}
GET /template/{templateId}/section/{sectionId}/content-block/{blockId}/render-rule/{ruleId}/rule-detail/{ruleDetailId}
GET /v1/template/{id}/datasources/type
PATCH /customer/{customerId}/connected-app/{connectedAppId}/data/migrate
PATCH /customer/{customerId}/connected-app/{connectedAppId}/objects/{objectId}/fields/refresh
PATCH /customer/{customerId}/connected-app/{connectedAppId}/objects/{objectId}/relationships/refresh
PATCH /customer/{customerId}/connected-app/{connectedAppId}/objects/{objectId}/relationships/status
PATCH /customer/{customerId}/connected-app/{connectedAppId}/objects/{objectId}/relationships/{relationshipId}/fields/refresh
PATCH /customer/{customerId}/connected-app/{connectedAppId}/settings/objects/refresh
PATCH /customer/{customerId}/connectedapplication/{connectedAppId}/object/{apiName}/element
PATCH /customer/{customerId}/connectedapplication/{connectedAppId}/objects/{apiName}/relationships/{data_source_rel_id}
PATCH /customer/{customerId}/fields/status
PATCH /customer/{customerId}/objects/status
PATCH /document/{documentId}/section/{documentSectionId}/contentBlock/{documentContentBlockId}/refresh
PATCH /document/{documentId}/version/{versionId}
PATCH /documentUser/{documentId}/user/{userId}
PATCH /documents/lock/{documentId}
PATCH /documents/{id}/inputfields/all
PATCH /documents/{id}/refresh
PATCH /documents/{id}/restore
PATCH /settings/{category}/{sectionName}
PATCH /template/{id}/section/{sectionId}/content-block/{blockId}/merge-data/{mergeId}
PATCH /template/{templateId}/profiles
POST /customer/{customerId}/connected-app/{connectedAppId}/objects/schema
POST /customer/{customerId}/connected-app/{connectedAppId}/settings/objects
POST /customer/{customerId}/connected-app/{connectedAppId}/settings/objects/{objectId}/schema
POST /customer/{customerId}/connectedapplication/{connectedAppId}/datasource
POST /customer/{customerId}/connectedapplication/{connectedAppId}/objects/{apiName}/relationship
POST /customer/{customerId}/connectedapplication/{connectedAppId}/refresh
POST /customer/{customerId}/master-setup
POST /datasource/{dataSourceId}/elements
POST /document/{documentId}/user
POST /document/{documentId}/version/{versionId}/section/{sectionId}/contentBlock/{contentBlockId}/comment
POST /documents
POST /documents/generateDocument
POST /documents/{documentId}/retry
POST /template/cloneTemplateToNewUser/{newCustomerId}/{existingCustomerId}/{newUserId}
POST /template/{id}/datasource/{dataSourceId}/elements
POST /template/{id}/section
POST /template/{id}/section/{sectionId}/content-block
POST /template/{id}/section/{sectionId}/content-block/{blockId}/image
POST /template/{templateId}/clone
POST /template/{templateId}/publish
POST /template/{templateId}/section/{sectionId}/content-block/{blockId}/render-rule
POST /template/{templateId}/section/{sectionId}/content-block/{blockId}/render-rule/{ruleId}/rule-detail
POST /upload-file

Found on 2026-01-09 17:06

Severity: info
Fingerprint: 5733ddf49ff49cd151e75e4b6fbd0de7387ba3c7c29d732eeaa3eacb81c6b8b7

Public Swagger UI/API detected at path: /v3/api-docs - sample paths:
DELETE /document/{documentId}/user/{documentUserId}
DELETE /template/{id}/merge-data
DELETE /template/{id}/section/{sectionId}/content-block/{blockId}/image/{imageId}
DELETE /template/{id}/section/{sectionId}/content-block/{blockId}/merge-data/{ids}
DELETE /template/{templateId}/datasource/{datasourceId}
GET /customer/{customerId}/connected-app/{connectedAppId}/assets
GET /customer/{customerId}/connected-app/{connectedAppId}/objects
GET /customer/{customerId}/connectedapplication/{connectedAppId}
GET /customer/{customerId}/connectedapplication/{connectedAppId}/data/{objectApiName}
GET /customer/{customerId}/connectedapplication/{connectedAppId}/objects
GET /customer/{customerId}/connectedapplication/{connectedAppId}/objects/{apiName}/dataelements
GET /customer/{customerId}/connectedapplication/{connectedAppId}/objects/{apiName}/relationships
GET /customer/{customerId}/connectedapplications
GET /customer/{customerId}/objects/{objectId}/relationships/{relationshipId}/fields
GET /customer/{customerId}/objects/{objectId}/schema
GET /customer/{id}/datasource
GET /customer/{id}/templates
GET /dataElements/{dataElementId}/options
GET /datasource/{id}/refreshtime
GET /datasource/{id}/{objName}
GET /document-user/{documentId}/user/{userId}
GET /document/{documentId}/comments
GET /document/{documentId}/fieldConfig
GET /document/{documentId}/fieldConfig/{id}
GET /document/{documentId}/merge-data
GET /document/{documentId}/related-list/{relatedListId}
GET /document/{documentId}/section
GET /document/{documentId}/section/{documentSectionId}
GET /document/{documentId}/section/{documentSectionId}/contentBlock
GET /document/{documentId}/section/{documentSectionId}/contentBlock/compare/{versionId}
GET /document/{documentId}/section/{documentSectionId}/contentBlock/{documentContentBlockId}
GET /document/{documentId}/users
GET /document/{documentId}/version
GET /document/{documentId}/version/{versionId}/section/{sectionId}/contentBlock/{contentBlockId}
GET /document/{documentId}/version/{versionId}/section/{sectionId}/contentBlock/{contentBlockId}/comment/{commentId}
GET /documents/all
GET /documents/customer/{customerId}
GET /documents/documentCards
GET /documents/file/{fileId}
GET /documents/generate/init
GET /documents/hub/{hubId}
GET /documents/invitedDocument/{id}
GET /documents/poll
GET /documents/template/{templateId}
GET /documents/{documentId}/generate/pdf
GET /documents/{documentId}/{functionality}/{domain}/validate-access
GET /documents/{hubId}/{objectId}/{templateId}
GET /documents/{id}
GET /documents/{id}/inputfields
GET /file
GET /settings/app
GET /settings/usage-statistics
GET /settings/variables
GET /settings/{category}
GET /template
GET /template/workFlow
GET /template/{id}
GET /template/{id}/datasource
GET /template/{id}/datasource/{dataSourceId}/elements/{objName}
GET /template/{id}/datasource/{dataSourceId}/type
GET /template/{id}/datasources/type
GET /template/{id}/elements/{objName}
GET /template/{id}/section/{sectionId}/content-block/{blockId}
GET /template/{id}/section/{sectionId}/content-block/{blockId}/merge-data
GET /template/{id}/section/{sectionId}/content-block/{blockId}/{fieldKey}/merge-data
GET /template/{id}/section/{sectionId}/content-blocks
GET /template/{id}/section/{sectionId}/related-list
GET /template/{templateId}/accessible-profile
GET /template/{templateId}/fieldConfig
GET /template/{templateId}/fieldConfig/{id}
GET /template/{templateId}/inputfields
GET /template/{templateId}/merge-data
GET /template/{templateId}/preview
GET /template/{templateId}/profile
GET /template/{templateId}/profile/{profileId}
GET /template/{templateId}/relations
GET /template/{templateId}/section
GET /template/{templateId}/section/{sectionId}
GET /template/{templateId}/section/{sectionId}/content-block/{blockId}/block-action
GET /template/{templateId}/section/{sectionId}/content-block/{blockId}/block-action/{blockActionId}
GET /template/{templateId}/section/{sectionId}/content-block/{blockId}/render-rule/{ruleId}
GET /template/{templateId}/section/{sectionId}/content-block/{blockId}/render-rule/{ruleId}/rule-detail/{ruleDetailId}
GET /v1/template/{id}/datasources/type
PATCH /customer/{customerId}/connected-app/{connectedAppId}/data/migrate
PATCH /customer/{customerId}/connected-app/{connectedAppId}/objects/{objectId}/fields/refresh
PATCH /customer/{customerId}/connected-app/{connectedAppId}/objects/{objectId}/relationships/refresh
PATCH /customer/{customerId}/connected-app/{connectedAppId}/objects/{objectId}/relationships/status
PATCH /customer/{customerId}/connected-app/{connectedAppId}/objects/{objectId}/relationships/{relationshipId}/fields/refresh
PATCH /customer/{customerId}/connected-app/{connectedAppId}/settings/objects/refresh
PATCH /customer/{customerId}/connectedapplication/{connectedAppId}/object/{apiName}/element
PATCH /customer/{customerId}/connectedapplication/{connectedAppId}/objects/{apiName}/relationships/{data_source_rel_id}
PATCH /customer/{customerId}/fields/status
PATCH /customer/{customerId}/objects/status
PATCH /document/{documentId}/section/{documentSectionId}/contentBlock/{documentContentBlockId}/refresh
PATCH /document/{documentId}/version/{versionId}
PATCH /documentUser/{documentId}/user/{userId}
PATCH /documents/lock/{documentId}
PATCH /documents/{id}/inputfields/all
PATCH /documents/{id}/refresh
PATCH /documents/{id}/restore
PATCH /template/{id}/section/{sectionId}/content-block/{blockId}/merge-data/{mergeId}
PATCH /template/{templateId}/profiles
POST /customer/{customerId}/connected-app/{connectedAppId}/objects/schema
POST /customer/{customerId}/connected-app/{connectedAppId}/settings/objects
POST /customer/{customerId}/connected-app/{connectedAppId}/settings/objects/{objectId}/schema
POST /customer/{customerId}/connectedapplication/{connectedAppId}/datasource
POST /customer/{customerId}/connectedapplication/{connectedAppId}/objects/{apiName}/relationship
POST /customer/{customerId}/connectedapplication/{connectedAppId}/refresh
POST /customer/{customerId}/master-setup
POST /datasource/{dataSourceId}/elements
POST /document/{documentId}/user
POST /document/{documentId}/version/{versionId}/section/{sectionId}/contentBlock/{contentBlockId}/comment
POST /documents
POST /documents/generateDocument
POST /documents/{documentId}/retry
POST /settings/{category}/{sectionName}
POST /template/cloneTemplateToNewUser/{newCustomerId}/{existingCustomerId}/{newUserId}
POST /template/{id}/datasource/{dataSourceId}/elements
POST /template/{id}/section
POST /template/{id}/section/{sectionId}/content-block
POST /template/{id}/section/{sectionId}/content-block/{blockId}/image
POST /template/{templateId}/clone
POST /template/{templateId}/publish
POST /template/{templateId}/section/{sectionId}/content-block/{blockId}/render-rule
POST /template/{templateId}/section/{sectionId}/content-block/{blockId}/render-rule/{ruleId}/rule-detail
POST /upload-file

Found on 2025-12-22 17:31

Severity: info
Fingerprint: 5733ddf49ff49cd151e75e4b6fbd0de7387ba3c7c29d732eeaa3eacbbc68952b

Public Swagger UI/API detected at path: /v3/api-docs - sample paths:
DELETE /document/{documentId}/user/{documentUserId}
DELETE /template/{id}/merge-data
DELETE /template/{id}/section/{sectionId}/content-block/{blockId}/image/{imageId}
DELETE /template/{id}/section/{sectionId}/content-block/{blockId}/merge-data/{ids}
DELETE /template/{templateId}/datasource/{datasourceId}
GET /customer/{customerId}/connected-app/{connectedAppId}/assets
GET /customer/{customerId}/connected-app/{connectedAppId}/objects
GET /customer/{customerId}/connectedapplication/{connectedAppId}
GET /customer/{customerId}/connectedapplication/{connectedAppId}/data/{objectApiName}
GET /customer/{customerId}/connectedapplication/{connectedAppId}/objects
GET /customer/{customerId}/connectedapplication/{connectedAppId}/objects/{apiName}/dataelements
GET /customer/{customerId}/connectedapplication/{connectedAppId}/objects/{apiName}/relationships
GET /customer/{customerId}/connectedapplications
GET /customer/{customerId}/objects/{objectId}/relationships/{relationshipId}/fields
GET /customer/{customerId}/objects/{objectId}/schema
GET /customer/{id}/datasource
GET /customer/{id}/templates
GET /dataElements/{dataElementId}/options
GET /datasource/{id}/refreshtime
GET /datasource/{id}/{objName}
GET /document-user/{documentId}/user/{userId}
GET /document/{documentId}/comments
GET /document/{documentId}/fieldConfig
GET /document/{documentId}/fieldConfig/{id}
GET /document/{documentId}/merge-data
GET /document/{documentId}/related-list/{relatedListId}
GET /document/{documentId}/section
GET /document/{documentId}/section/{documentSectionId}
GET /document/{documentId}/section/{documentSectionId}/contentBlock
GET /document/{documentId}/section/{documentSectionId}/contentBlock/{documentContentBlockId}
GET /document/{documentId}/users
GET /document/{documentId}/version
GET /document/{documentId}/version/{versionId}/section/{sectionId}/contentBlock/{contentBlockId}
GET /document/{documentId}/version/{versionId}/section/{sectionId}/contentBlock/{contentBlockId}/comment/{commentId}
GET /documents/all
GET /documents/customer/{customerId}
GET /documents/documentCards
GET /documents/file/{fileId}
GET /documents/generate/init
GET /documents/hub/{hubId}
GET /documents/invitedDocument/{id}
GET /documents/poll
GET /documents/template/{templateId}
GET /documents/{documentId}/generate/pdf
GET /documents/{documentId}/{functionality}/{domain}/validate-access
GET /documents/{hubId}/{objectId}/{templateId}
GET /documents/{id}
GET /documents/{id}/inputfields
GET /file
GET /settings/app
GET /settings/usage-statistics
GET /settings/variables
GET /settings/{category}
GET /template
GET /template/workFlow
GET /template/{id}
GET /template/{id}/datasource
GET /template/{id}/datasource/{dataSourceId}/elements/{objName}
GET /template/{id}/datasource/{dataSourceId}/type
GET /template/{id}/datasources/type
GET /template/{id}/elements/{objName}
GET /template/{id}/section/{sectionId}/content-block/{blockId}
GET /template/{id}/section/{sectionId}/content-block/{blockId}/merge-data
GET /template/{id}/section/{sectionId}/content-block/{blockId}/{fieldKey}/merge-data
GET /template/{id}/section/{sectionId}/content-blocks
GET /template/{id}/section/{sectionId}/related-list
GET /template/{templateId}/accessible-profile
GET /template/{templateId}/fieldConfig
GET /template/{templateId}/fieldConfig/{id}
GET /template/{templateId}/inputfields
GET /template/{templateId}/merge-data
GET /template/{templateId}/preview
GET /template/{templateId}/profile
GET /template/{templateId}/profile/{profileId}
GET /template/{templateId}/relations
GET /template/{templateId}/section
GET /template/{templateId}/section/{sectionId}
GET /template/{templateId}/section/{sectionId}/content-block/{blockId}/block-action
GET /template/{templateId}/section/{sectionId}/content-block/{blockId}/block-action/{blockActionId}
GET /template/{templateId}/section/{sectionId}/content-block/{blockId}/render-rule/{ruleId}
GET /template/{templateId}/section/{sectionId}/content-block/{blockId}/render-rule/{ruleId}/rule-detail/{ruleDetailId}
GET /v1/template/{id}/datasources/type
PATCH /customer/{customerId}/connected-app/{connectedAppId}/data/migrate
PATCH /customer/{customerId}/connected-app/{connectedAppId}/objects/{objectId}/fields/refresh
PATCH /customer/{customerId}/connected-app/{connectedAppId}/objects/{objectId}/relationships/refresh
PATCH /customer/{customerId}/connected-app/{connectedAppId}/objects/{objectId}/relationships/status
PATCH /customer/{customerId}/connected-app/{connectedAppId}/objects/{objectId}/relationships/{relationshipId}/fields/refresh
PATCH /customer/{customerId}/connected-app/{connectedAppId}/settings/objects/refresh
PATCH /customer/{customerId}/connectedapplication/{connectedAppId}/object/{apiName}/element
PATCH /customer/{customerId}/connectedapplication/{connectedAppId}/objects/{apiName}/relationships/{data_source_rel_id}
PATCH /customer/{customerId}/fields/status
PATCH /customer/{customerId}/objects/status
PATCH /document/{documentId}/section/{documentSectionId}/contentBlock/{documentContentBlockId}/refresh
PATCH /document/{documentId}/version/{versionId}
PATCH /documentUser/{documentId}/user/{userId}
PATCH /documents/lock/{documentId}
PATCH /documents/{id}/inputfields/all
PATCH /documents/{id}/refresh
PATCH /documents/{id}/restore
PATCH /template/{id}/section/{sectionId}/content-block/{blockId}/merge-data/{mergeId}
PATCH /template/{templateId}/profiles
POST /customer/{customerId}/connected-app/{connectedAppId}/objects/schema
POST /customer/{customerId}/connected-app/{connectedAppId}/settings/objects
POST /customer/{customerId}/connected-app/{connectedAppId}/settings/objects/{objectId}/schema
POST /customer/{customerId}/connectedapplication/{connectedAppId}/datasource
POST /customer/{customerId}/connectedapplication/{connectedAppId}/objects/{apiName}/relationship
POST /customer/{customerId}/connectedapplication/{connectedAppId}/refresh
POST /customer/{customerId}/master-setup
POST /datasource/{dataSourceId}/elements
POST /document/{documentId}/user
POST /document/{documentId}/version/{versionId}/section/{sectionId}/contentBlock/{contentBlockId}/comment
POST /documents
POST /documents/generateDocument
POST /documents/{documentId}/retry
POST /settings/{category}/{sectionName}
POST /template/cloneTemplateToNewUser/{newCustomerId}/{existingCustomerId}/{newUserId}
POST /template/{id}/datasource/{dataSourceId}/elements
POST /template/{id}/section
POST /template/{id}/section/{sectionId}/content-block
POST /template/{id}/section/{sectionId}/content-block/{blockId}/image
POST /template/{templateId}/clone
POST /template/{templateId}/publish
POST /template/{templateId}/section/{sectionId}/content-block/{blockId}/render-rule
POST /template/{templateId}/section/{sectionId}/content-block/{blockId}/render-rule/{ruleId}/rule-detail
POST /upload-file

Found on 2025-12-20 16:05

Severity: info
Fingerprint: 5733ddf49ff49cd151e75e4b6fbd0de7387ba3c7c29d732eeaa3eacb4fce3b03

Public Swagger UI/API detected at path: /v3/api-docs - sample paths:
DELETE /document/{documentId}/user/{documentUserId}
DELETE /template/{id}/merge-data
DELETE /template/{id}/section/{sectionId}/content-block/{blockId}/image/{imageId}
DELETE /template/{id}/section/{sectionId}/content-block/{blockId}/merge-data/{ids}
DELETE /template/{templateId}/datasource/{datasourceId}
GET /customer/{customerId}/connected-app/{connectedAppId}/assets
GET /customer/{customerId}/connected-app/{connectedAppId}/objects
GET /customer/{customerId}/connectedapplication/{connectedAppId}
GET /customer/{customerId}/connectedapplication/{connectedAppId}/data/{objectApiName}
GET /customer/{customerId}/connectedapplication/{connectedAppId}/objects
GET /customer/{customerId}/connectedapplication/{connectedAppId}/objects/{apiName}/dataelements
GET /customer/{customerId}/connectedapplication/{connectedAppId}/objects/{apiName}/relationships
GET /customer/{customerId}/connectedapplications
GET /customer/{customerId}/objects/{objectId}/relationships/{relationshipId}/fields
GET /customer/{customerId}/objects/{objectId}/schema
GET /customer/{id}/datasource
GET /customer/{id}/templates
GET /dataElements/{dataElementId}/options
GET /datasource/{id}/refreshtime
GET /datasource/{id}/{objName}
GET /document-user/{documentId}/user/{userId}
GET /document/{documentId}/comments
GET /document/{documentId}/fieldConfig
GET /document/{documentId}/fieldConfig/{id}
GET /document/{documentId}/merge-data
GET /document/{documentId}/related-list/{relatedListId}
GET /document/{documentId}/section
GET /document/{documentId}/section/{documentSectionId}
GET /document/{documentId}/section/{documentSectionId}/contentBlock
GET /document/{documentId}/section/{documentSectionId}/contentBlock/{documentContentBlockId}
GET /document/{documentId}/users
GET /document/{documentId}/version
GET /document/{documentId}/version/{versionId}/section/{sectionId}/contentBlock/{contentBlockId}
GET /document/{documentId}/version/{versionId}/section/{sectionId}/contentBlock/{contentBlockId}/comment/{commentId}
GET /documents
GET /documents/all
GET /documents/customer/{customerId}
GET /documents/documentCards
GET /documents/file/{fileId}
GET /documents/generate/init
GET /documents/hub/{hubId}
GET /documents/invitedDocument/{id}
GET /documents/poll
GET /documents/template/{templateId}
GET /documents/{documentId}/generate/pdf
GET /documents/{documentId}/{functionality}/{domain}/validate-access
GET /documents/{hubId}/{objectId}/{templateId}
GET /documents/{id}
GET /documents/{id}/inputfields
GET /file
GET /settings/app
GET /settings/usage-statistics
GET /settings/variables
GET /settings/{category}
GET /template
GET /template/workFlow
GET /template/{id}
GET /template/{id}/datasource
GET /template/{id}/datasource/{dataSourceId}/elements/{objName}
GET /template/{id}/datasource/{dataSourceId}/type
GET /template/{id}/datasources/type
GET /template/{id}/elements/{objName}
GET /template/{id}/section/{sectionId}/content-block/{blockId}
GET /template/{id}/section/{sectionId}/content-block/{blockId}/merge-data
GET /template/{id}/section/{sectionId}/content-block/{blockId}/{fieldKey}/merge-data
GET /template/{id}/section/{sectionId}/content-blocks
GET /template/{id}/section/{sectionId}/related-list
GET /template/{templateId}/accessible-profile
GET /template/{templateId}/fieldConfig
GET /template/{templateId}/fieldConfig/{id}
GET /template/{templateId}/inputfields
GET /template/{templateId}/merge-data
GET /template/{templateId}/preview
GET /template/{templateId}/profile
GET /template/{templateId}/profile/{profileId}
GET /template/{templateId}/relations
GET /template/{templateId}/section
GET /template/{templateId}/section/{sectionId}
GET /template/{templateId}/section/{sectionId}/content-block/{blockId}/block-action
GET /template/{templateId}/section/{sectionId}/content-block/{blockId}/block-action/{blockActionId}
GET /template/{templateId}/section/{sectionId}/content-block/{blockId}/render-rule/{ruleId}
GET /template/{templateId}/section/{sectionId}/content-block/{blockId}/render-rule/{ruleId}/rule-detail/{ruleDetailId}
GET /v1/template/{id}/datasources/type
PATCH /customer/{customerId}/connected-app/{connectedAppId}/data/migrate
PATCH /customer/{customerId}/connected-app/{connectedAppId}/objects/{objectId}/fields/refresh
PATCH /customer/{customerId}/connected-app/{connectedAppId}/objects/{objectId}/relationships/refresh
PATCH /customer/{customerId}/connected-app/{connectedAppId}/objects/{objectId}/relationships/status
PATCH /customer/{customerId}/connected-app/{connectedAppId}/objects/{objectId}/relationships/{relationshipId}/fields/refresh
PATCH /customer/{customerId}/connected-app/{connectedAppId}/settings/objects/refresh
PATCH /customer/{customerId}/connectedapplication/{connectedAppId}/object/{apiName}/element
PATCH /customer/{customerId}/connectedapplication/{connectedAppId}/objects/{apiName}/relationships/{data_source_rel_id}
PATCH /customer/{customerId}/fields/status
PATCH /customer/{customerId}/objects/status
PATCH /document/{documentId}/section/{documentSectionId}/contentBlock/{documentContentBlockId}/refresh
PATCH /document/{documentId}/version/{versionId}
PATCH /documentUser/{documentId}/user/{userId}
PATCH /documents/lock/{documentId}
PATCH /documents/{id}/inputfields/all
PATCH /documents/{id}/refresh
PATCH /documents/{id}/restore
PATCH /template/{id}/section/{sectionId}/content-block/{blockId}/merge-data/{mergeId}
PATCH /template/{templateId}/profiles
POST /customer/{customerId}/connected-app/{connectedAppId}/objects/schema
POST /customer/{customerId}/connected-app/{connectedAppId}/settings/objects
POST /customer/{customerId}/connected-app/{connectedAppId}/settings/objects/{objectId}/schema
POST /customer/{customerId}/connectedapplication/{connectedAppId}/datasource
POST /customer/{customerId}/connectedapplication/{connectedAppId}/objects/{apiName}/relationship
POST /customer/{customerId}/connectedapplication/{connectedAppId}/refresh
POST /customer/{customerId}/master-setup
POST /datasource/{dataSourceId}/elements
POST /document/{documentId}/user
POST /document/{documentId}/version/{versionId}/section/{sectionId}/contentBlock/{contentBlockId}/comment
POST /documents/generateDocument
POST /documents/{documentId}/retry
POST /settings/{category}/{sectionName}
POST /template/cloneTemplateToNewUser/{newCustomerId}/{existingCustomerId}/{newUserId}
POST /template/{id}/datasource/{dataSourceId}/elements
POST /template/{id}/section
POST /template/{id}/section/{sectionId}/content-block
POST /template/{id}/section/{sectionId}/content-block/{blockId}/image
POST /template/{templateId}/clone
POST /template/{templateId}/publish
POST /template/{templateId}/section/{sectionId}/content-block/{blockId}/render-rule
POST /template/{templateId}/section/{sectionId}/content-block/{blockId}/render-rule/{ruleId}/rule-detail
POST /upload-file

Found on 2025-12-07 01:44

Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 75.2.60.68
Domain: api.studly.co
Port: 443
URL: https://api.studly.co

First seen 2025-10-29 01:08
Last seen 2026-01-09 17:01
Open for 72 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109
```
Public Swagger UI/API detected at path: /api-docs/swagger.json
```
  Found on 2026-01-09 17:01
Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 75.2.60.68
Domain: api.se.wellywork.com
Port: 80
URL: http://api.se.wellywork.com

First seen 2025-11-16 02:14
Last seen 2026-01-09 15:57
Open for 54 days

Severity: info
Fingerprint: 5733ddf49ff49cd151e75e4bb8ae9c6b46166af1f82a7b6ea48c8e368b08cf7c

Public Swagger UI/API detected at path: /v3/api-docs - sample paths:
GET /se/auth
GET /se/auth/confirm-device/resend-code
GET /se/auth/logout
GET /se/auth/refresh
GET /se/code-secret/recovery/resend-code
GET /se/code-secret/recovery/{username}
GET /se/infos
GET /se/notifications
GET /se/notifications/unread
GET /se/parameter/{name}
GET /se/pictures/links
GET /se/pictures/principal
GET /se/pictures/{id}
GET /se/wallet/gains
GET /se/wallet/solde
GET /se/wallet/transactions
POST /se/auth/check-username
POST /se/auth/login
POST /se/notifications/{token}
POST /se/pictures
POST /se/push-token/save
POST /se/wallet/cashout
POST /se/wallet/encash
PUT /se/add/email
PUT /se/add/email/confirmation
PUT /se/auth/confirm-device
PUT /se/code-secret/recovery
PUT /se/code-secret/recovery/confirmation
PUT /se/code-secret/update
PUT /se/notifications/mark-as-seen/{id}
PUT /se/pwd-must-change/update

Found on 2026-01-09 15:57

Severity: info
Fingerprint: 5733ddf49ff49cd151e75e4bb8ae9c6b46166af1f82a7b6ea48c8e36f70c5f92

Public Swagger UI/API detected at path: /v3/api-docs - sample paths:
GET /se/auth
GET /se/auth/confirm-device/resend-code
GET /se/auth/logout
GET /se/auth/refresh
GET /se/code-secret/recovery/resend-code
GET /se/code-secret/recovery/{username}
GET /se/infos
GET /se/notifications
GET /se/notifications/unread
GET /se/parameter/{name}
GET /se/pictures/links
GET /se/pictures/principal
GET /se/pictures/{id}
GET /se/wallet/gains
GET /se/wallet/solde
GET /se/wallet/transactions
POST /se/auth/check-username
POST /se/auth/login
POST /se/notifications/{token}
POST /se/pictures
POST /se/push-token/save
POST /se/wallet/cashout
PUT /se/add/email
PUT /se/add/email/confirmation
PUT /se/auth/confirm-device
PUT /se/code-secret/recovery
PUT /se/code-secret/recovery/confirmation
PUT /se/code-secret/update
PUT /se/notifications/mark-as-seen/{id}
PUT /se/pwd-must-change/update

Found on 2025-11-16 02:14

Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 75.2.60.68
Domain: event-fabric.stratisglobal.ai
Port: 443
URL: https://event-fabric.stratisglobal.ai

First seen 2025-10-23 13:25
Last seen 2026-01-09 15:48
Open for 78 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1aad035496286795a20e072a720e072a720e072a720e072a7
```
Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
POST /heroku-events
POST /heroku-events/{id}
```
  Found on 2026-01-09 15:48
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 75.2.60.68
Domain: portal.sieli.com.mx
Port: 443
URL: https://portal.sieli.com.mx

First seen 2025-10-16 01:29
Last seen 2026-01-09 14:03
Open for 85 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1aad035495ca32384443a7443f52cbe80bec0a6f73c1a7c50
```
Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
GET /_configuration/{clientId}
GET /api/Customers
GET /api/Customers/count
GET /api/Customers/{id}
GET /api/Customers/{id}/details
GET /api/Patients
GET /api/Patients/count
GET /api/Patients/patients-by-customer-and-date
GET /api/Patients/{id}
GET /api/Patients/{id}/details
GET /api/Users
GET /api/Users/GetUsersByCustomer/{customerId}
GET /api/Users/countUsers
GET /api/Users/roles
GET /api/Users/{id}
GET /api/Users/{id}/details
GET /api/Users/{id}/roles
GET /api/settings/version
GET /images/{fileName}
POST /api/Account/Logout
POST /api/Users/AssignRole
PUT /api/Users/{id}/customers
```
  Found on 2026-01-09 14:03
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 75.2.60.68
Domain: qa.townofmorrisville.lithiosapps.com
Port: 443
URL: https://qa.townofmorrisville.lithiosapps.com

First seen 2025-12-07 01:44
Last seen 2026-01-09 13:03
Open for 33 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109
```
Public Swagger UI/API detected at path: /api-docs/swagger.json
```
  Found on 2026-01-09 13:03
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 75.2.60.68
Domain: event-fabric.stratisglobal.ai
Port: 80
URL: http://event-fabric.stratisglobal.ai

First seen 2025-10-23 13:25
Last seen 2026-01-09 12:46
Open for 77 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1aad035496286795a20e072a720e072a720e072a720e072a7
```
Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
POST /heroku-events
POST /heroku-events/{id}
```
  Found on 2026-01-09 12:46
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 75.2.60.68
Domain: t-api.staging.lightbeans.com
Port: 443
URL: https://t-api.staging.lightbeans.com

First seen 2025-11-21 04:29
Last seen 2026-01-09 12:19
Open for 49 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1d83dc3bfd83dc3bfd83dc3bfd83dc3bfd83dc3bfd83dc3bf
```
Public Swagger UI/API detected at path: /swagger/swagger-ui.html
```
  Found on 2026-01-09 12:19
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 75.2.60.68
Domain: api.maisselos.com.br
Port: 80
URL: http://api.maisselos.com.br

First seen 2025-12-11 20:46
Last seen 2026-01-09 09:58
Open for 28 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109
```
Public Swagger UI/API detected at path: /api-docs/swagger.json
```
  Found on 2026-01-09 09:58
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 75.2.60.68
Domain: dash.carzac.com
Port: 443
URL: https://dash.carzac.com

First seen 2025-11-02 00:48
Last seen 2026-01-09 09:47
Open for 68 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-01-09 09:47
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 75.2.60.68
Domain: dash.carzac.com
Port: 80
URL: http://dash.carzac.com

First seen 2025-11-02 00:48
Last seen 2026-01-09 09:47
Open for 68 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-01-09 09:47
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 75.2.60.68
Domain: quantum-leap-dev.motorverse.com
Port: 80
URL: http://quantum-leap-dev.motorverse.com

First seen 2025-11-24 03:26
Last seen 2026-01-09 09:33
Open for 46 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109
```
Public Swagger UI/API detected at path: /api-docs/swagger.json
```
  Found on 2026-01-09 09:33
Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 75.2.60.68
Domain: staging-api.property.pro.indesigninnovations.com
Port: 443
URL: https://staging-api.property.pro.indesigninnovations.com

First seen 2025-11-10 00:11
Last seen 2026-01-09 09:10
Open for 60 days

Severity: info
Fingerprint: 5733ddf49ff49cd151e75e4bddbf7e51bab80e90d5eaf2a63e99971f412fd8db

Public Swagger UI/API detected at path: /v3/api-docs - sample paths:
DELETE /property/{propertyId}
GET /property/ai-design/property/{propertyId}
GET /property/ai-design/{id}
GET /property/aiInfo
GET /property/architectual-json/{propertyId}
GET /property/download/{filename}
GET /property/profile/{profileId}
GET /property/propertyAttachment
GET /property/questionaires/{propertyId}
GET /property/tempUrl/{fileKey}
GET /property/template/{spaceType}
GET /property/{propertyId}/section/{sectionId}
POST /property
POST /property/ai-design
POST /property/ai-json-layout/{propertyId}
POST /property/ai_submit/{propertyId}
POST /property/final-design/{propertyId}
POST /property/jsonLayout
POST /property/section
PUT /property/approve/{propertyId}
PUT /property/design_ready/{propertyId}
PUT /property/finalize/{propertyId}
PUT /property/section/property-id/{propertyId}
PUT /property/submit/{propertyId}
PUT /property/submit_details/{propertyId}
PUT /property/upload

Found on 2026-01-09 09:10

Severity: info
Fingerprint: 5733ddf49ff49cd151e75e4bddbf7e51bab80e90d5eaf2a63e99971ff776c653

Public Swagger UI/API detected at path: /v3/api-docs - sample paths:
DELETE /property/{propertyId}
GET /property/ai-design/property/{propertyId}
GET /property/ai-design/{id}
GET /property/aiInfo
GET /property/architectual-json/{propertyId}
GET /property/download/{filename}
GET /property/profile/{profileId}
GET /property/propertyAttachment
GET /property/questionaires/{propertyId}
GET /property/tempUrl/{fileKey}
GET /property/template/{spaceType}
GET /property/{propertyId}/section/{sectionId}
POST /property
POST /property/ai-design
POST /property/ai_submit/{propertyId}
POST /property/final-design/{propertyId}
POST /property/jsonLayout
POST /property/section
PUT /property/approve/{propertyId}
PUT /property/design_ready/{propertyId}
PUT /property/finalize/{propertyId}
PUT /property/section/property-id/{propertyId}
PUT /property/submit/{propertyId}
PUT /property/submit_details/{propertyId}
PUT /property/upload

Found on 2025-12-14 04:02

Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 75.2.60.68
Domain: loveandcourage.ai
Port: 80
URL: http://loveandcourage.ai

First seen 2025-10-19 00:09
Last seen 2026-01-09 08:57
Open for 82 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1f5e22fb4a8788c34af8beb57f989605b9c7386c01c388340
```
Public Swagger UI/API detected at path: /api/swagger.json - sample paths:
GET /intentions/{profile_id}
GET /intentions/{profile_id}/{intention_id}
GET /moments/{profile_id}
GET /moments/{profile_id}/{moment_id}
GET /profiles/{username}
GET /users/me
POST /contact_messages/
POST /moments/{profile_id}/{moment_id}/tags/{tag_id}
POST /signups/
PUT /intentions/{profile_id}/{intention_id}/context
```
  Found on 2026-01-09 08:57
Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 75.2.60.68
Domain: synapse.api.test.sdocs.com
Port: 80
URL: http://synapse.api.test.sdocs.com

First seen 2025-10-25 00:29
Last seen 2026-01-09 08:50
Open for 76 days

Severity: info
Fingerprint: 5733ddf49ff49cd151e75e4b49bd6e4bc172a02011a441220ede2d3b113b6a9a

Public Swagger UI/API detected at path: /v3/api-docs - sample paths:
GET /connectedApp/{connectedAppId}/asset/{assetId}/platformInfo
GET /connectedApp/{connectedAppId}/data/file
GET /connectedApp/{connectedAppId}/data/user/{userEmail}
GET /connectedApp/{connectedAppId}/data/{objectApiName}/{fieldApiName}
GET /connectedApp/{connectedAppId}/metadata/assets
GET /connectedApp/{connectedAppId}/metadata/objects
GET /connectedApp/{connectedAppId}/metadata/objects/{objectApiName}
GET /connectedApp/{connectedAppId}/metadata/objects/{objectApiName}/relationships
GET /connectedApp/{connectedAppId}/metadata/objects/{objectApiName}/{fieldApiName}/options
PATCH /connectedApp/{connectedAppId}/{objectApiName}/{objectId}
POST /connectedApp
POST /connectedApp/{connectedAppId}/connections
POST /connectedApp/{connectedAppId}/data/objects/{objectApiName}/records/{recordId}/file
POST /connectedApp/{connectedAppId}/data/{objectApiName}/{objectId}
POST /connectedApp/{connectedAppId}/disconnect
POST /connectedApp/{connectedAppId}/messaging/{msgType}
POST /connectedApp/{connectedAppId}/startRecipes
POST /connectedApp/{connectedAppId}/workflow/callback

Found on 2026-01-09 08:50

Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 75.2.60.68
Domain: api2.partsxchange.co.uk
Port: 443
URL: https://api2.partsxchange.co.uk

First seen 2025-11-25 00:54
Last seen 2026-01-09 08:41
Open for 45 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109
```
Public Swagger UI/API detected at path: /api-docs/swagger.json
```
  Found on 2026-01-09 08:41
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 75.2.60.68
Domain: event-fabric.staging.stratisglobal.ai
Port: 443
URL: https://event-fabric.staging.stratisglobal.ai

First seen 2025-11-29 00:05
Last seen 2026-01-09 08:24
Open for 41 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1aad035496286795a20e072a720e072a720e072a720e072a7
```
Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
POST /heroku-events
POST /heroku-events/{id}
```
  Found on 2026-01-09 08:24
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 75.2.60.68
Domain: webhooks.quotetome.com
Port: 443
URL: https://webhooks.quotetome.com

First seen 2025-12-05 17:25
Last seen 2026-01-09 07:24
Open for 34 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1b885ff43655729af6ab92a7d698995df565c4b6825c056a7
```
Public Swagger UI/API detected at path: /swagger.json - sample paths:
GET /pos/
GET /pos/{id}/
GET /pos/{id}/receipts/
GET /receipts/
GET /rfqs/
GET /rfqs/{id}/
GET /rfqs/{id}/approvals/
GET /users/
GET /users/cost_codes/
GET /users/jobsites/
GET /users/jobsites/{id}/
GET /users/jobsites/{id}/cost_codes/
GET /vendors/
POST /users/cost_codes/bulk_cost_codes/
POST /users/cost_codes/bulk_delete_cost_codes/
POST /users/login/
POST /users/logout/
PUT /users/cost_codes/{id}/
```
  Found on 2026-01-09 07:24
Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 75.2.60.68
Domain: synapse.api.test.sdocs.com
Port: 443
URL: https://synapse.api.test.sdocs.com

First seen 2025-10-25 00:29
Last seen 2026-01-09 07:12
Open for 76 days

Severity: info
Fingerprint: 5733ddf49ff49cd151e75e4b49bd6e4bc172a02011a441220ede2d3b113b6a9a

Public Swagger UI/API detected at path: /v3/api-docs - sample paths:
GET /connectedApp/{connectedAppId}/asset/{assetId}/platformInfo
GET /connectedApp/{connectedAppId}/data/file
GET /connectedApp/{connectedAppId}/data/user/{userEmail}
GET /connectedApp/{connectedAppId}/data/{objectApiName}/{fieldApiName}
GET /connectedApp/{connectedAppId}/metadata/assets
GET /connectedApp/{connectedAppId}/metadata/objects
GET /connectedApp/{connectedAppId}/metadata/objects/{objectApiName}
GET /connectedApp/{connectedAppId}/metadata/objects/{objectApiName}/relationships
GET /connectedApp/{connectedAppId}/metadata/objects/{objectApiName}/{fieldApiName}/options
PATCH /connectedApp/{connectedAppId}/{objectApiName}/{objectId}
POST /connectedApp
POST /connectedApp/{connectedAppId}/connections
POST /connectedApp/{connectedAppId}/data/objects/{objectApiName}/records/{recordId}/file
POST /connectedApp/{connectedAppId}/data/{objectApiName}/{objectId}
POST /connectedApp/{connectedAppId}/disconnect
POST /connectedApp/{connectedAppId}/messaging/{msgType}
POST /connectedApp/{connectedAppId}/startRecipes
POST /connectedApp/{connectedAppId}/workflow/callback

Found on 2026-01-09 07:12

Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 75.2.60.68
Domain: api.risk-dynamix.com
Port: 80
URL: http://api.risk-dynamix.com

First seen 2025-10-30 01:00
Last seen 2026-01-09 06:50
Open for 71 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109
```
Public Swagger UI/API detected at path: /api-docs/swagger.json
```
  Found on 2026-01-09 06:50
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 75.2.60.68
Domain: api.studly.co
Port: 80
URL: http://api.studly.co

First seen 2025-10-29 01:08
Last seen 2026-01-09 06:43
Open for 72 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109
```
Public Swagger UI/API detected at path: /api-docs/swagger.json
```
  Found on 2026-01-09 06:43
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 75.2.60.68
Domain: api.diary-sample.1-system-group.jp
Port: 443
URL: https://api.diary-sample.1-system-group.jp

First seen 2025-11-29 01:15
Last seen 2026-01-09 05:48
Open for 41 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1aad03549d143512f118782443df75a9fc26e82a8c26e82a8
```
Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
GET /api/v1/Counts
GET /api/v1/Diary/{id}
GET /api/v1/Lists/{page}
POST /api/v1/Login
```
  Found on 2026-01-09 05:48
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 75.2.60.68
Domain: cua-confirmador.clinicauandes.io
Port: 80
URL: http://cua-confirmador.clinicauandes.io

First seen 2025-11-28 00:08
Last seen 2026-01-09 05:39
Open for 42 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109
```
Public Swagger UI/API detected at path: /api-docs/swagger.json
```
  Found on 2026-01-09 05:39
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 75.2.60.68
Domain: thefurniturebros.com
Port: 443
URL: https://thefurniturebros.com

First seen 2025-10-22 01:41
Last seen 2026-01-09 05:36
Open for 79 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109
```
Public Swagger UI/API detected at path: /api-docs/swagger.json
```
  Found on 2026-01-09 05:36
Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 75.2.60.68
Domain: staging-api.property.pro.indesigninnovations.com
Port: 80
URL: http://staging-api.property.pro.indesigninnovations.com

First seen 2025-11-10 00:11
Last seen 2026-01-09 05:28
Open for 60 days

Severity: info
Fingerprint: 5733ddf49ff49cd151e75e4bddbf7e51bab80e90d5eaf2a63e99971f412fd8db

Public Swagger UI/API detected at path: /v3/api-docs - sample paths:
DELETE /property/{propertyId}
GET /property/ai-design/property/{propertyId}
GET /property/ai-design/{id}
GET /property/aiInfo
GET /property/architectual-json/{propertyId}
GET /property/download/{filename}
GET /property/profile/{profileId}
GET /property/propertyAttachment
GET /property/questionaires/{propertyId}
GET /property/tempUrl/{fileKey}
GET /property/template/{spaceType}
GET /property/{propertyId}/section/{sectionId}
POST /property
POST /property/ai-design
POST /property/ai-json-layout/{propertyId}
POST /property/ai_submit/{propertyId}
POST /property/final-design/{propertyId}
POST /property/jsonLayout
POST /property/section
PUT /property/approve/{propertyId}
PUT /property/design_ready/{propertyId}
PUT /property/finalize/{propertyId}
PUT /property/section/property-id/{propertyId}
PUT /property/submit/{propertyId}
PUT /property/submit_details/{propertyId}
PUT /property/upload

Found on 2026-01-09 05:28

Severity: info
Fingerprint: 5733ddf49ff49cd151e75e4bddbf7e51bab80e90d5eaf2a63e99971ff776c653

Public Swagger UI/API detected at path: /v3/api-docs - sample paths:
DELETE /property/{propertyId}
GET /property/ai-design/property/{propertyId}
GET /property/ai-design/{id}
GET /property/aiInfo
GET /property/architectual-json/{propertyId}
GET /property/download/{filename}
GET /property/profile/{profileId}
GET /property/propertyAttachment
GET /property/questionaires/{propertyId}
GET /property/tempUrl/{fileKey}
GET /property/template/{spaceType}
GET /property/{propertyId}/section/{sectionId}
POST /property
POST /property/ai-design
POST /property/ai_submit/{propertyId}
POST /property/final-design/{propertyId}
POST /property/jsonLayout
POST /property/section
PUT /property/approve/{propertyId}
PUT /property/design_ready/{propertyId}
PUT /property/finalize/{propertyId}
PUT /property/section/property-id/{propertyId}
PUT /property/submit/{propertyId}
PUT /property/submit_details/{propertyId}
PUT /property/upload

Found on 2025-12-13 13:14

Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 75.2.60.68
Domain: tileserver.banesullivan.com
Port: 443
URL: https://tileserver.banesullivan.com

First seen 2025-11-14 00:43
Last seen 2026-01-09 05:20
Open for 56 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1f5e22fb44c296528cde372548c07b203489d979773e13371
```
Public Swagger UI/API detected at path: /api/swagger.json - sample paths:
GET /bounds
GET /metadata
GET /palettes
GET /thumbnail.{format}
GET /tiles/{z}/{x}/{y}.{format}
GET /validate
```
  Found on 2026-01-09 05:20
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 75.2.60.68
Domain: ltidev.mooneyapp.com.br
Port: 80
URL: http://ltidev.mooneyapp.com.br

First seen 2025-12-11 00:15
Last seen 2026-01-09 05:13
Open for 29 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109
```
Public Swagger UI/API detected at path: /api-docs/swagger.json
```
  Found on 2026-01-09 05:13
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 75.2.60.68
Domain: esample.lightbeans.com
Port: 80
URL: http://esample.lightbeans.com

First seen 2025-11-15 02:50
Last seen 2026-01-09 04:28
Open for 55 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1d83dc3bfd83dc3bfd83dc3bfd83dc3bfd83dc3bfd83dc3bf
```
Public Swagger UI/API detected at path: /swagger/swagger-ui.html
```
  Found on 2026-01-09 04:28
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 75.2.60.68
Domain: event-fabric.atlis.ai
Port: 443
URL: https://event-fabric.atlis.ai

First seen 2025-11-14 00:14
Last seen 2026-01-09 04:25
Open for 56 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1aad035496286795a20e072a720e072a720e072a720e072a7
```
Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
POST /heroku-events
POST /heroku-events/{id}
```
  Found on 2026-01-09 04:25
Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 75.2.60.68
Domain: server-staging.makeitperfectly.com
Port: 443
URL: https://server-staging.makeitperfectly.com

First seen 2025-11-03 00:38
Last seen 2026-01-09 03:47
Open for 67 days

Severity: info
Fingerprint: 5733ddf49ff49cd1b885ff43d381b5382c079c364d9202341b346bb3b43030af

Public Swagger UI/API detected at path: /swagger.json - sample paths:
DELETE /{appName}/anonymous/{userId}
DELETE /{appName}/sessions/{token}
DELETE /{appName}/users/{userId}/reset
DELETE /{appName}/{resourceType}/{id}
GET /contents
GET /contents/{id}
GET /events
GET /reviews
GET /reviews/{reviewId}
GET /web/{appName}/auth
GET /web/{appName}/auth_no_social
GET /web/{appName}/confirm
GET /web/{appName}/confirm/resend
GET /web/{appName}/error
GET /web/{appName}/links/{path*}
GET /web/{appName}/login
GET /web/{appName}/obsolete
GET /web/{appName}/reference
GET /web/{appName}/reference/{referenceType}/{referenceId}
GET /web/{appName}/register
GET /web/{appName}/reset
GET /web/{appName}/reset_request
GET /web/{appName}/users/feed
GET /web/{appName}/users/{userId}/feed
GET /{appName}/actions
GET /{appName}/actions/{id}
GET /{appName}/actions/{id}/history
GET /{appName}/analytics/builds
GET /{appName}/analytics/builds/dayparts
GET /{appName}/analytics/builds/ingredients
GET /{appName}/analytics/builds/recipes
GET /{appName}/analytics/builds/users
GET /{appName}/analytics/builds/{id}
GET /{appName}/collections
GET /{appName}/collections/{cid}
GET /{appName}/collections/{id}/history
GET /{appName}/containers
GET /{appName}/containers/{id}
GET /{appName}/containers/{id}/history
GET /{appName}/contents/{id}/history
GET /{appName}/contents/{type}
GET /{appName}/dependencies/{resourceType}
GET /{appName}/dependencies/{resourceType}/{resourceId}
GET /{appName}/error
GET /{appName}/extras/{id}
GET /{appName}/extras/{id}/history
GET /{appName}/feed
GET /{appName}/feed/{id}
GET /{appName}/ingredients
GET /{appName}/ingredients/{id}
GET /{appName}/ingredients/{id}/history
GET /{appName}/partners/{name}
GET /{appName}/partners/{name}/containers/{id}
GET /{appName}/partners/{name}/ingredients/{id}
GET /{appName}/partners/{name}/recipes/{id}
GET /{appName}/partners/{name}/tools/{id}
GET /{appName}/promotions/{resourceType}/{resourceId}
GET /{appName}/recipes
GET /{appName}/recipes/partners/{partnerName}/{partnerId}
GET /{appName}/recipes/{id}
GET /{appName}/recipes/{id}/history
GET /{appName}/reset/{id}
GET /{appName}/resources/tags
GET /{appName}/reviews/{id}/history
GET /{appName}/sessions
GET /{appName}/status
GET /{appName}/tags
GET /{appName}/tags/{id}/history
GET /{appName}/tags/{tagId}
GET /{appName}/tools
GET /{appName}/tools/{id}
GET /{appName}/tools/{id}/history
GET /{appName}/units
GET /{appName}/units/{id}
GET /{appName}/units/{id}/history
GET /{appName}/users
GET /{appName}/users/{id}/history
GET /{appName}/users/{userId}
GET /{appName}/users/{userId}/app_preferences
GET /{appName}/users/{userId}/cabinet
GET /{appName}/users/{userId}/collections
GET /{appName}/users/{userId}/ingredients
GET /{appName}/users/{userId}/ingredients/{id}
GET /{appName}/users/{userId}/mealplans/active/{activeMealPlanId}
GET /{appName}/users/{userId}/recipe_settings
GET /{appName}/users/{userId}/recipes
GET /{appName}/users/{userId}/recipes/{id}
GET /{appName}/users/{userId}/recipes/{id}/builds/{buildId}
GET /{appName}/users/{userId}/recipes/{recipeId}/recipe_settings
GET /{appName}/users/{userId}/resources
GET /{appName}/users/{userId}/reviews
GET /{appName}/users/{userId}/shopping_list
GET /{appName}/users/{userId}/shopping_list_items
GET /{appName}/users/{userId}/shopping_list_items/{id}
GET /{appName}/users/{userId}/tags/{tagId}
GET /{appName}/users/{userId}/users
GET /{appName}/users/{userId}/{resourceType}/{resourceId}/tags
GET /{appName}/{resourceType}/{resourceId}/reviews
GET /{appName}/{resourceType}/{resourceId}/tags
POST /{appName}/anonymous
POST /{appName}/auth
POST /{appName}/change_email
POST /{appName}/collections/{cid}/users/{userId}
POST /{appName}/confirm
POST /{appName}/confirm/resend
POST /{appName}/migrations
POST /{appName}/promotions
POST /{appName}/register
POST /{appName}/reset
POST /{appName}/reset_request
POST /{appName}/users/{userId}/collections/personal
POST /{appName}/users/{userId}/events
POST /{appName}/users/{userId}/mealplans/active
POST /{appName}/users/{userId}/recipes/{id}/builds
POST /{appName}/users/{userId}/tags
POST /{appName}/users/{userId}/{resourceType}/{resourceId}/reviews
PUT /{appName}/collections/{cid}/{resourceType}/{resourceId}
PUT /{appName}/tags/{id}
PUT /{appName}/users/{userId}/collections/installed/{resourceType}/{resourceId}
PUT /{appName}/users/{userId}/collections/personal/{cid}
PUT /{appName}/users/{userId}/collections/personal/{cid}/{resourceType}/{resourceId}
PUT /{appName}/users/{userId}/mealplans/active/{id}
PUT /{appName}/users/{userId}/password
PUT /{appName}/users/{userId}/share/{resourceType}/{resourceId}
PUT /{appName}/users/{userId}/{resourceType}/{resourceId}/reviews/{reviewId}
PUT /{appName}/users/{userId}/{resourceType}/{resourceId}/tags/{tagId}
PUT /{appName}/{resourceType}/{resourceId}/localization
PUT /{appName}/{resourceType}/{resourceId}/photo
PUT /{appName}/{resourceType}/{resourceId}/tags/{tagId}

Found on 2026-01-09 03:47

Severity: info
Fingerprint: 5733ddf49ff49cd1b885ff43d381b5382c079c364d9202341b346bb30d0917c1

Public Swagger UI/API detected at path: /swagger.json - sample paths:
DELETE /{appName}/anonymous/{userId}
DELETE /{appName}/sessions/{token}
DELETE /{appName}/users/{userId}/reset
DELETE /{appName}/{resourceType}/{id}
GET /contents
GET /contents/{id}
GET /events
GET /reviews
GET /reviews/{reviewId}
GET /web/{appName}/auth
GET /web/{appName}/auth_no_social
GET /web/{appName}/confirm
GET /web/{appName}/confirm/resend
GET /web/{appName}/error
GET /web/{appName}/facebook/client_error
GET /web/{appName}/facebook/{source}
GET /web/{appName}/google/{source}
GET /web/{appName}/links/{path*}
GET /web/{appName}/login
GET /web/{appName}/obsolete
GET /web/{appName}/reference
GET /web/{appName}/reference/{referenceType}/{referenceId}
GET /web/{appName}/register
GET /web/{appName}/reset
GET /web/{appName}/reset_request
GET /web/{appName}/twitter
GET /web/{appName}/users/feed
GET /web/{appName}/users/{userId}/feed
GET /{appName}/actions
GET /{appName}/actions/{id}
GET /{appName}/actions/{id}/history
GET /{appName}/analytics/builds
GET /{appName}/analytics/builds/dayparts
GET /{appName}/analytics/builds/ingredients
GET /{appName}/analytics/builds/recipes
GET /{appName}/analytics/builds/users
GET /{appName}/analytics/builds/{id}
GET /{appName}/collections
GET /{appName}/collections/{cid}
GET /{appName}/collections/{id}/history
GET /{appName}/containers
GET /{appName}/containers/{id}
GET /{appName}/containers/{id}/history
GET /{appName}/contents/{id}/history
GET /{appName}/contents/{type}
GET /{appName}/dependencies/{resourceType}
GET /{appName}/dependencies/{resourceType}/{resourceId}
GET /{appName}/error
GET /{appName}/extras/{id}
GET /{appName}/extras/{id}/history
GET /{appName}/facebook_client
GET /{appName}/feed
GET /{appName}/feed/{id}
GET /{appName}/google_client
GET /{appName}/ingredients
GET /{appName}/ingredients/{id}
GET /{appName}/ingredients/{id}/history
GET /{appName}/partners/{name}
GET /{appName}/partners/{name}/containers/{id}
GET /{appName}/partners/{name}/ingredients/{id}
GET /{appName}/partners/{name}/recipes/{id}
GET /{appName}/partners/{name}/tools/{id}
GET /{appName}/promotions/{resourceType}/{resourceId}
GET /{appName}/recipes
GET /{appName}/recipes/partners/{partnerName}/{partnerId}
GET /{appName}/recipes/{id}
GET /{appName}/recipes/{id}/history
GET /{appName}/reset/{id}
GET /{appName}/resources/tags
GET /{appName}/reviews/{id}/history
GET /{appName}/sessions
GET /{appName}/status
GET /{appName}/tags
GET /{appName}/tags/{id}/history
GET /{appName}/tags/{tagId}
GET /{appName}/tools
GET /{appName}/tools/{id}
GET /{appName}/tools/{id}/history
GET /{appName}/units
GET /{appName}/units/{id}
GET /{appName}/units/{id}/history
GET /{appName}/users
GET /{appName}/users/{id}/history
GET /{appName}/users/{userId}
GET /{appName}/users/{userId}/app_preferences
GET /{appName}/users/{userId}/cabinet
GET /{appName}/users/{userId}/collections
GET /{appName}/users/{userId}/ingredients
GET /{appName}/users/{userId}/ingredients/{id}
GET /{appName}/users/{userId}/mealplans/active/{activeMealPlanId}
GET /{appName}/users/{userId}/recipe_settings
GET /{appName}/users/{userId}/recipes
GET /{appName}/users/{userId}/recipes/{id}
GET /{appName}/users/{userId}/recipes/{id}/builds/{buildId}
GET /{appName}/users/{userId}/recipes/{recipeId}/recipe_settings
GET /{appName}/users/{userId}/resources
GET /{appName}/users/{userId}/reviews
GET /{appName}/users/{userId}/shopping_list
GET /{appName}/users/{userId}/shopping_list_items
GET /{appName}/users/{userId}/shopping_list_items/{id}
GET /{appName}/users/{userId}/tags/{tagId}
GET /{appName}/users/{userId}/users
GET /{appName}/users/{userId}/{resourceType}/{resourceId}/tags
GET /{appName}/{resourceType}/{resourceId}/reviews
GET /{appName}/{resourceType}/{resourceId}/tags
POST /{appName}/anonymous
POST /{appName}/auth
POST /{appName}/change_email
POST /{appName}/collections/{cid}/users/{userId}
POST /{appName}/confirm
POST /{appName}/confirm/resend
POST /{appName}/migrations
POST /{appName}/promotions
POST /{appName}/register
POST /{appName}/reset
POST /{appName}/reset_request
POST /{appName}/users/{userId}/collections/personal
POST /{appName}/users/{userId}/events
POST /{appName}/users/{userId}/mealplans/active
POST /{appName}/users/{userId}/recipes/{id}/builds
POST /{appName}/users/{userId}/tags
POST /{appName}/users/{userId}/{resourceType}/{resourceId}/reviews
PUT /{appName}/collections/{cid}/{resourceType}/{resourceId}
PUT /{appName}/tags/{id}
PUT /{appName}/users/{userId}/collections/installed/{resourceType}/{resourceId}
PUT /{appName}/users/{userId}/collections/personal/{cid}
PUT /{appName}/users/{userId}/collections/personal/{cid}/{resourceType}/{resourceId}
PUT /{appName}/users/{userId}/mealplans/active/{id}
PUT /{appName}/users/{userId}/password
PUT /{appName}/users/{userId}/share/{resourceType}/{resourceId}
PUT /{appName}/users/{userId}/{resourceType}/{resourceId}/reviews/{reviewId}
PUT /{appName}/users/{userId}/{resourceType}/{resourceId}/tags/{tagId}
PUT /{appName}/{resourceType}/{resourceId}/localization
PUT /{appName}/{resourceType}/{resourceId}/photo
PUT /{appName}/{resourceType}/{resourceId}/tags/{tagId}

Found on 2025-12-01 15:06

Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 75.2.60.68
Domain: seekapi.bluent.it
Port: 443
URL: https://seekapi.bluent.it

First seen 2025-10-24 07:26
Last seen 2026-01-09 03:14
Open for 76 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109
```
Public Swagger UI/API detected at path: /api-docs/swagger.json
```
  Found on 2026-01-09 03:14
Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 75.2.60.68
Domain: www.bankingquest.com
Port: 443
URL: https://www.bankingquest.com

First seen 2025-10-19 00:30
Last seen 2026-01-09 02:44
Open for 82 days

Severity: info
Fingerprint: 5733ddf49ff49cd1f5e22fb449f2689fb097f7b806f94e6ce38cd0810448778a

Public Swagger UI/API detected at path: /api/swagger.json - sample paths:
GET /aboutus/meet-the-team/
GET /blogs/
GET /blogs/categories/
GET /blogs/{blog_id}/comments/
GET /blogs/{id}/
GET /clients/
GET /events/
GET /events/counts/
GET /events/course-category-summary/
GET /events/courses/
GET /events/event-categories/
GET /events/feedback/{event_id}/
GET /events/meta-data/{event_id}/
GET /events/my-courses/
GET /events/total-participants/
GET /events/{event_identifier}/
GET /events/{event_id}/reviews/
GET /gallery
GET /lms/homepage-stats/
GET /lms/learner/courses/
GET /lms/learner/courses/meta-data/{event_id}/
GET /lms/learner/courses/{event_identifier}/
GET /lms/learner/event-categories
GET /lms/learner/my-course/
GET /payment/coupons/
GET /privacy-policy/
GET /profile/
GET /profile/address/
GET /profile/apply/
GET /profile/completion/
GET /profile/dra-dashboard/
GET /profile/dra-dashboard/export/
GET /refund-policy/
GET /sampletest/admin/available-languages/
GET /sampletest/admin/categories/
GET /sampletest/admin/category/
GET /sampletest/admin/category/{id}/
GET /sampletest/admin/category/{id}/latest-job/
GET /sampletest/admin/category/{id}/question-sets/
GET /sampletest/admin/category/{id}/question-stats/
GET /sampletest/admin/check-permission/
GET /sampletest/admin/generate/
GET /sampletest/admin/generate/{id}/
GET /sampletest/admin/generate/{id}/status/
GET /sampletest/admin/group/{group_id}/
GET /sampletest/admin/groups/
GET /sampletest/admin/question-set/{id}/
GET /sampletest/admin/question-set/{id}/questions/
GET /sampletest/admin/question-sets/
GET /sampletest/admin/question/{id}/
GET /sampletest/admin/tags/
GET /sampletest/admin/test/{id}/
GET /sampletest/admin/tests/
GET /sampletest/certificates/
GET /sampletest/download-certificate/{uid}/
GET /sampletest/generate-certificate/{sampletest_id}/
GET /sampletest/group-result/{group_id}/
GET /sampletest/group-summary/{group_id}/
GET /sampletest/group/{group_id}/
GET /sampletest/my-test/
GET /sampletest/result/{sampletest_id}/
GET /sampletest/series/{slug}/
GET /sampletest/summary/{id}/
GET /sampletest/{id}/
GET /terms-and-condition/
GET /testimonials/
GET /tutorials/
GET /tutorials/{id}/
POST /contact-us/
POST /login/
POST /payment/apply-coupon/
POST /payment/create-payment-order/
POST /payment/doubt-session/create-order/
POST /payment/doubt-session/verify/
POST /payment/payment-callback/
POST /profile/image/
POST /profile/resume/
POST /profile/upload-document/
POST /register
POST /sampletest/admin/create-group-with-test/
POST /sampletest/admin/create-new-group/
POST /sampletest/admin/generate/{id}/cancel/
POST /sampletest/admin/group/{group_id}/add-test/
POST /sampletest/admin/question-set/
POST /sampletest/admin/question-set/{id}/tags/
POST /sampletest/admin/question-set/{id}/tags/{tag_id}/
POST /sampletest/admin/question/
POST /sampletest/admin/test/
POST /sampletest/admin/test/create-from-categories/
POST /sampletest/admin/test/link-question-sets/
POST /sampletest/admin/test/{id}/copy/
POST /sampletest/admin/upload/
POST /sampletest/mark-review/
POST /sampletest/update-question-time/
POST /sampletest/update-time/
POST /verify-token/
PUT /sampletest/admin/answer/{id}/
PUT /sampletest/admin/group/{group_id}/reorder/
PUT /sampletest/admin/question-set-image/{id}/

Found on 2026-01-09 02:44

Severity: info
Fingerprint: 5733ddf49ff49cd1f5e22fb449f2689fb097f7b806f94e6ce38cd0819d8baea5

Public Swagger UI/API detected at path: /api/swagger.json - sample paths:
GET /aboutus/meet-the-team/
GET /blogs/
GET /blogs/categories/
GET /blogs/{blog_id}/comments/
GET /blogs/{id}/
GET /clients/
GET /events/
GET /events/counts/
GET /events/course-category-summary/
GET /events/courses/
GET /events/event-categories/
GET /events/feedback/{event_id}/
GET /events/meta-data/{event_id}/
GET /events/my-courses/
GET /events/total-participants/
GET /events/{event_identifier}/
GET /events/{event_id}/reviews/
GET /gallery
GET /lms/homepage-stats/
GET /lms/learner/courses/
GET /lms/learner/courses/meta-data/{event_id}/
GET /lms/learner/courses/{event_identifier}/
GET /lms/learner/event-categories
GET /lms/learner/my-course/
GET /payment/coupons/
GET /privacy-policy/
GET /profile/
GET /profile/address/
GET /profile/apply/
GET /profile/completion/
GET /profile/dra-dashboard/
GET /profile/dra-dashboard/export/
GET /refund-policy/
GET /sampletest/admin/available-languages/
GET /sampletest/admin/categories/
GET /sampletest/admin/category/
GET /sampletest/admin/category/{id}/
GET /sampletest/admin/category/{id}/latest-job/
GET /sampletest/admin/category/{id}/question-sets/
GET /sampletest/admin/category/{id}/question-stats/
GET /sampletest/admin/check-permission/
GET /sampletest/admin/generate/
GET /sampletest/admin/generate/{id}/
GET /sampletest/admin/generate/{id}/status/
GET /sampletest/admin/group/{group_id}/
GET /sampletest/admin/groups/
GET /sampletest/admin/question-set/{id}/
GET /sampletest/admin/question-set/{id}/questions/
GET /sampletest/admin/question-sets/
GET /sampletest/admin/question/{id}/
GET /sampletest/admin/tags/
GET /sampletest/admin/test/{id}/
GET /sampletest/admin/tests/
GET /sampletest/certificates/
GET /sampletest/download-certificate/{uid}/
GET /sampletest/generate-certificate/{sampletest_id}/
GET /sampletest/group-result/{group_id}/
GET /sampletest/group-summary/{group_id}/
GET /sampletest/group/{group_id}/
GET /sampletest/my-test/
GET /sampletest/result/{sampletest_id}/
GET /sampletest/series/{slug}/
GET /sampletest/summary/{id}/
GET /sampletest/{id}/
GET /terms-and-condition/
GET /testimonials/
GET /tutorials/
GET /tutorials/{id}/
POST /contact-us/
POST /login/
POST /payment/apply-coupon/
POST /payment/create-payment-order/
POST /payment/doubt-session/create-order/
POST /payment/doubt-session/verify/
POST /payment/payment-callback/
POST /profile/image/
POST /profile/resume/
POST /profile/upload-document/
POST /register
POST /sampletest/admin/create-group-with-test/
POST /sampletest/admin/create-new-group/
POST /sampletest/admin/generate/{id}/cancel/
POST /sampletest/admin/group/{group_id}/add-test/
POST /sampletest/admin/question-set/
POST /sampletest/admin/question-set/{id}/tags/
POST /sampletest/admin/question-set/{id}/tags/{tag_id}/
POST /sampletest/admin/question/
POST /sampletest/admin/test/
POST /sampletest/admin/test/create-from-categories/
POST /sampletest/admin/test/link-question-sets/
POST /sampletest/admin/upload/
POST /sampletest/mark-review/
POST /sampletest/update-question-time/
POST /sampletest/update-time/
POST /verify-token/
PUT /sampletest/admin/answer/{id}/
PUT /sampletest/admin/group/{group_id}/reorder/
PUT /sampletest/admin/question-set-image/{id}/

Found on 2026-01-02 00:23

Severity: info
Fingerprint: 5733ddf49ff49cd1f5e22fb449f2689fb097f7b806f94e6ce38cd0812c1f2ceb

Public Swagger UI/API detected at path: /api/swagger.json - sample paths:
GET /aboutus/meet-the-team/
GET /blogs/
GET /blogs/categories/
GET /blogs/{blog_id}/comments/
GET /blogs/{id}/
GET /clients/
GET /events/
GET /events/counts/
GET /events/course-category-summary/
GET /events/courses/
GET /events/event-categories/
GET /events/feedback/{event_id}/
GET /events/meta-data/{event_id}/
GET /events/my-courses/
GET /events/total-participants/
GET /events/{event_identifier}/
GET /events/{event_id}/reviews/
GET /gallery
GET /lms/homepage-stats/
GET /lms/learner/courses/
GET /lms/learner/courses/meta-data/{event_id}/
GET /lms/learner/courses/{event_identifier}/
GET /lms/learner/event-categories
GET /lms/learner/my-course/
GET /payment/coupons/
GET /privacy-policy/
GET /profile/
GET /profile/address/
GET /profile/apply/
GET /profile/completion/
GET /profile/dra-dashboard/
GET /profile/dra-dashboard/export/
GET /refund-policy/
GET /sampletest/admin/categories/
GET /sampletest/admin/category/
GET /sampletest/admin/category/{id}/
GET /sampletest/admin/category/{id}/latest-job/
GET /sampletest/admin/category/{id}/question-sets/
GET /sampletest/admin/category/{id}/question-stats/
GET /sampletest/admin/check-permission/
GET /sampletest/admin/generate/
GET /sampletest/admin/generate/{id}/
GET /sampletest/admin/generate/{id}/status/
GET /sampletest/admin/group/{group_id}/
GET /sampletest/admin/groups/
GET /sampletest/admin/question-set/{id}/
GET /sampletest/admin/question-set/{id}/questions/
GET /sampletest/admin/question-sets/
GET /sampletest/admin/question/{id}/
GET /sampletest/admin/tags/
GET /sampletest/admin/test/{id}/
GET /sampletest/admin/tests/
GET /sampletest/certificates/
GET /sampletest/download-certificate/{uid}/
GET /sampletest/generate-certificate/{sampletest_id}/
GET /sampletest/group-result/{group_id}/
GET /sampletest/group-summary/{group_id}/
GET /sampletest/group/{group_id}/
GET /sampletest/my-test/
GET /sampletest/result/{sampletest_id}/
GET /sampletest/summary/{id}/
GET /sampletest/{id}/
GET /terms-and-condition/
GET /testimonials/
GET /tutorials/
GET /tutorials/{id}/
POST /contact-us/
POST /login/
POST /payment/apply-coupon/
POST /payment/create-payment-order/
POST /payment/doubt-session/create-order/
POST /payment/doubt-session/verify/
POST /payment/payment-callback/
POST /profile/image/
POST /profile/resume/
POST /profile/upload-document/
POST /register
POST /sampletest/admin/create-group-with-test/
POST /sampletest/admin/create-new-group/
POST /sampletest/admin/generate/{id}/cancel/
POST /sampletest/admin/group/{group_id}/add-test/
POST /sampletest/admin/question-set/
POST /sampletest/admin/question-set/{id}/tags/
POST /sampletest/admin/question-set/{id}/tags/{tag_id}/
POST /sampletest/admin/question/
POST /sampletest/admin/test/
POST /sampletest/admin/test/create-from-categories/
POST /sampletest/admin/test/link-question-sets/
POST /sampletest/admin/upload/
POST /sampletest/mark-review/
POST /sampletest/update-question-time/
POST /sampletest/update-time/
POST /verify-token/
PUT /sampletest/admin/answer/{id}/
PUT /sampletest/admin/group/{group_id}/reorder/
PUT /sampletest/admin/question-set-image/{id}/

Found on 2025-12-30 08:26

Severity: info
Fingerprint: 5733ddf49ff49cd1f5e22fb449f2689fb097f7b806f94e6ce38cd0815feccc9e

Public Swagger UI/API detected at path: /api/swagger.json - sample paths:
GET /aboutus/meet-the-team/
GET /blogs/
GET /blogs/categories/
GET /blogs/{blog_id}/comments/
GET /blogs/{id}/
GET /clients/
GET /events/
GET /events/counts/
GET /events/course-category-summary/
GET /events/courses/
GET /events/event-categories/
GET /events/feedback/{event_id}/
GET /events/meta-data/{event_id}/
GET /events/my-courses/
GET /events/total-participants/
GET /events/{event_identifier}/
GET /events/{event_id}/reviews/
GET /gallery
GET /lms/homepage-stats/
GET /lms/learner/courses/
GET /lms/learner/courses/meta-data/{event_id}/
GET /lms/learner/courses/{event_identifier}/
GET /lms/learner/event-categories
GET /lms/learner/my-course/
GET /payment/coupons/
GET /privacy-policy/
GET /profile/
GET /profile/address/
GET /profile/apply/
GET /profile/completion/
GET /profile/dra-dashboard/
GET /profile/dra-dashboard/export/
GET /refund-policy/
GET /sampletest/admin/categories/
GET /sampletest/admin/category/
GET /sampletest/admin/category/{id}/
GET /sampletest/admin/category/{id}/latest-job/
GET /sampletest/admin/category/{id}/question-sets/
GET /sampletest/admin/category/{id}/question-stats/
GET /sampletest/admin/check-permission/
GET /sampletest/admin/generate/
GET /sampletest/admin/generate/{id}/
GET /sampletest/admin/generate/{id}/status/
GET /sampletest/admin/group/{group_id}/
GET /sampletest/admin/groups/
GET /sampletest/admin/question-set/{id}/
GET /sampletest/admin/question-set/{id}/questions/
GET /sampletest/admin/question-sets/
GET /sampletest/admin/question/{id}/
GET /sampletest/admin/tags/
GET /sampletest/admin/test/{id}/
GET /sampletest/admin/tests/
GET /sampletest/certificates/
GET /sampletest/download-certificate/{uid}/
GET /sampletest/generate-certificate/{sampletest_id}/
GET /sampletest/group-result/{group_id}/
GET /sampletest/group-summary/{group_id}/
GET /sampletest/group/{group_id}/
GET /sampletest/my-test/
GET /sampletest/result/{sampletest_id}/
GET /sampletest/summary/{id}/
GET /sampletest/{id}/
GET /terms-and-condition/
GET /testimonials/
GET /tutorials/
GET /tutorials/{id}/
POST /contact-us/
POST /login/
POST /payment/apply-coupon/
POST /payment/create-payment-order/
POST /payment/doubt-session/create-order/
POST /payment/doubt-session/verify/
POST /payment/payment-callback/
POST /profile/image/
POST /profile/resume/
POST /profile/upload-document/
POST /register
POST /sampletest/admin/create-group-with-test/
POST /sampletest/admin/create-new-group/
POST /sampletest/admin/generate/{id}/cancel/
POST /sampletest/admin/group/{group_id}/add-test/
POST /sampletest/admin/question-set/
POST /sampletest/admin/question-set/{id}/tags/
POST /sampletest/admin/question-set/{id}/tags/{tag_id}/
POST /sampletest/admin/question/
POST /sampletest/admin/test/
POST /sampletest/admin/test/create-from-categories/
POST /sampletest/admin/test/link-question-sets/
POST /sampletest/admin/upload/
POST /sampletest/mark-review/
POST /sampletest/update-time/
POST /verify-token/
PUT /sampletest/admin/answer/{id}/
PUT /sampletest/admin/group/{group_id}/reorder/
PUT /sampletest/admin/question-set-image/{id}/

Found on 2025-12-26 05:00

Severity: info
Fingerprint: 5733ddf49ff49cd1f5e22fb449f2689fb097f7b806f94e6ce38cd081804ba3f0

Public Swagger UI/API detected at path: /api/swagger.json - sample paths:
GET /aboutus/meet-the-team/
GET /blogs/
GET /blogs/categories/
GET /blogs/{blog_id}/comments/
GET /blogs/{id}/
GET /clients/
GET /events/
GET /events/counts/
GET /events/course-category-summary/
GET /events/courses/
GET /events/event-categories/
GET /events/feedback/{event_id}/
GET /events/meta-data/{event_id}/
GET /events/my-courses/
GET /events/total-participants/
GET /events/{event_identifier}/
GET /events/{event_id}/reviews/
GET /gallery
GET /lms/homepage-stats/
GET /lms/learner/courses/
GET /lms/learner/courses/meta-data/{event_id}/
GET /lms/learner/courses/{event_identifier}/
GET /lms/learner/event-categories
GET /lms/learner/my-course/
GET /payment/coupons/
GET /privacy-policy/
GET /profile/
GET /profile/address/
GET /profile/apply/
GET /profile/completion/
GET /profile/dra-dashboard/
GET /profile/dra-dashboard/export/
GET /refund-policy/
GET /sampletest/admin/categories/
GET /sampletest/admin/category/
GET /sampletest/admin/category/{id}/
GET /sampletest/admin/category/{id}/latest-job/
GET /sampletest/admin/check-permission/
GET /sampletest/admin/generate/
GET /sampletest/admin/generate/{id}/
GET /sampletest/admin/generate/{id}/status/
GET /sampletest/admin/group/{group_id}/
GET /sampletest/admin/groups/
GET /sampletest/admin/question-set/{id}/
GET /sampletest/admin/question-set/{id}/questions/
GET /sampletest/admin/question-sets/
GET /sampletest/admin/question/{id}/
GET /sampletest/admin/tags/
GET /sampletest/admin/test/{id}/
GET /sampletest/admin/tests/
GET /sampletest/certificates/
GET /sampletest/download-certificate/{uid}/
GET /sampletest/generate-certificate/{sampletest_id}/
GET /sampletest/group-result/{group_id}/
GET /sampletest/group-summary/{group_id}/
GET /sampletest/group/{group_id}/
GET /sampletest/my-test/
GET /sampletest/result/{sampletest_id}/
GET /sampletest/summary/{id}/
GET /sampletest/{id}/
GET /terms-and-condition/
GET /testimonials/
GET /tutorials/
GET /tutorials/{id}/
POST /contact-us/
POST /login/
POST /payment/apply-coupon/
POST /payment/create-payment-order/
POST /payment/doubt-session/create-order/
POST /payment/doubt-session/verify/
POST /payment/payment-callback/
POST /profile/image/
POST /profile/resume/
POST /profile/upload-document/
POST /register
POST /sampletest/admin/create-group-with-test/
POST /sampletest/admin/create-new-group/
POST /sampletest/admin/generate/{id}/cancel/
POST /sampletest/admin/group/{group_id}/add-test/
POST /sampletest/admin/question-set/
POST /sampletest/admin/question-set/{id}/tags/
POST /sampletest/admin/question-set/{id}/tags/{tag_id}/
POST /sampletest/admin/question/
POST /sampletest/admin/test/
POST /sampletest/admin/test/link-question-sets/
POST /sampletest/admin/upload/
POST /sampletest/mark-review/
POST /sampletest/update-time/
POST /verify-token/
PUT /sampletest/admin/answer/{id}/
PUT /sampletest/admin/group/{group_id}/reorder/
PUT /sampletest/admin/question-set-image/{id}/

Found on 2025-12-24 14:54

Severity: info
Fingerprint: 5733ddf49ff49cd1f5e22fb449f2689fb097f7b806f94e6ce38cd08161dda545

Public Swagger UI/API detected at path: /api/swagger.json - sample paths:
GET /aboutus/meet-the-team/
GET /blogs/
GET /blogs/categories/
GET /blogs/{blog_id}/comments/
GET /blogs/{id}/
GET /clients/
GET /events/
GET /events/counts/
GET /events/course-category-summary/
GET /events/courses/
GET /events/event-categories/
GET /events/feedback/{event_id}/
GET /events/meta-data/{event_id}/
GET /events/my-courses/
GET /events/total-participants/
GET /events/{event_identifier}/
GET /events/{event_id}/reviews/
GET /gallery
GET /lms/homepage-stats/
GET /lms/learner/courses/
GET /lms/learner/courses/meta-data/{event_id}/
GET /lms/learner/courses/{event_identifier}/
GET /lms/learner/event-categories
GET /lms/learner/my-course/
GET /payment/coupons/
GET /privacy-policy/
GET /profile/
GET /profile/address/
GET /profile/apply/
GET /profile/completion/
GET /profile/dra-dashboard/
GET /profile/dra-dashboard/export/
GET /refund-policy/
GET /sampletest/admin/categories/
GET /sampletest/admin/category/
GET /sampletest/admin/check-permission/
GET /sampletest/admin/group/{group_id}/
GET /sampletest/admin/groups/
GET /sampletest/admin/question-set/{id}/
GET /sampletest/admin/question-set/{id}/questions/
GET /sampletest/admin/question-sets/
GET /sampletest/admin/question/{id}/
GET /sampletest/admin/tags/
GET /sampletest/admin/test/{id}/
GET /sampletest/admin/tests/
GET /sampletest/certificates/
GET /sampletest/download-certificate/{uid}/
GET /sampletest/generate-certificate/{sampletest_id}/
GET /sampletest/group-result/{group_id}/
GET /sampletest/group-summary/{group_id}/
GET /sampletest/group/{group_id}/
GET /sampletest/my-test/
GET /sampletest/result/{sampletest_id}/
GET /sampletest/summary/{id}/
GET /sampletest/{id}/
GET /terms-and-condition/
GET /testimonials/
GET /tutorials/
GET /tutorials/{id}/
POST /contact-us/
POST /login/
POST /payment/apply-coupon/
POST /payment/create-payment-order/
POST /payment/doubt-session/create-order/
POST /payment/doubt-session/verify/
POST /payment/payment-callback/
POST /profile/image/
POST /profile/resume/
POST /profile/upload-document/
POST /register
POST /sampletest/admin/create-group-with-test/
POST /sampletest/admin/create-new-group/
POST /sampletest/admin/group/{group_id}/add-test/
POST /sampletest/admin/question-set/
POST /sampletest/admin/question-set/{id}/tags/
POST /sampletest/admin/question-set/{id}/tags/{tag_id}/
POST /sampletest/admin/question/
POST /sampletest/admin/test/
POST /sampletest/admin/upload/
POST /sampletest/mark-review/
POST /sampletest/update-time/
POST /verify-token/
PUT /sampletest/admin/answer/{id}/
PUT /sampletest/admin/group/{group_id}/reorder/
PUT /sampletest/admin/question-set-image/{id}/

Found on 2025-12-22 14:40

Severity: info
Fingerprint: 5733ddf49ff49cd1f5e22fb449f2689fb097f7b806f94e6ce38cd081e3af8110

Public Swagger UI/API detected at path: /api/swagger.json - sample paths:
GET /aboutus/meet-the-team/
GET /blogs/
GET /blogs/categories/
GET /blogs/{blog_id}/comments/
GET /blogs/{id}/
GET /clients/
GET /events/
GET /events/counts/
GET /events/course-category-summary/
GET /events/courses/
GET /events/event-categories/
GET /events/feedback/{event_id}/
GET /events/meta-data/{event_id}/
GET /events/my-courses/
GET /events/total-participants/
GET /events/{event_identifier}/
GET /events/{event_id}/reviews/
GET /gallery
GET /lms/homepage-stats/
GET /lms/learner/courses/
GET /lms/learner/courses/meta-data/{event_id}/
GET /lms/learner/courses/{event_identifier}/
GET /lms/learner/event-categories
GET /lms/learner/my-course/
GET /payment/coupons/
GET /privacy-policy/
GET /profile/
GET /profile/address/
GET /profile/apply/
GET /profile/completion/
GET /profile/dra-dashboard/
GET /profile/dra-dashboard/export/
GET /refund-policy/
GET /sampletest/admin/categories/
GET /sampletest/admin/category/
GET /sampletest/admin/check-permission/
GET /sampletest/admin/group/{group_id}/
GET /sampletest/admin/groups/
GET /sampletest/admin/question-set/{id}/
GET /sampletest/admin/question-set/{id}/questions/
GET /sampletest/admin/question-sets/
GET /sampletest/admin/question/{id}/
GET /sampletest/admin/test/{id}/
GET /sampletest/admin/tests/
GET /sampletest/certificates/
GET /sampletest/download-certificate/{uid}/
GET /sampletest/generate-certificate/{sampletest_id}/
GET /sampletest/group-result/{group_id}/
GET /sampletest/group-summary/{group_id}/
GET /sampletest/group/{group_id}/
GET /sampletest/my-test/
GET /sampletest/result/{sampletest_id}/
GET /sampletest/summary/{id}/
GET /sampletest/{id}/
GET /terms-and-condition/
GET /testimonials/
GET /tutorials/
GET /tutorials/{id}/
POST /contact-us/
POST /login/
POST /payment/apply-coupon/
POST /payment/create-payment-order/
POST /payment/doubt-session/create-order/
POST /payment/doubt-session/verify/
POST /payment/payment-callback/
POST /profile/image/
POST /profile/resume/
POST /profile/upload-document/
POST /register
POST /sampletest/admin/create-group-with-test/
POST /sampletest/admin/create-new-group/
POST /sampletest/admin/group/{group_id}/add-test/
POST /sampletest/admin/question-set/
POST /sampletest/admin/question/
POST /sampletest/admin/test/
POST /sampletest/admin/upload/
POST /sampletest/mark-review/
POST /sampletest/update-time/
POST /verify-token/
PUT /sampletest/admin/answer/{id}/
PUT /sampletest/admin/group/{group_id}/reorder/
PUT /sampletest/admin/question-set-image/{id}/

Found on 2025-12-20 13:10

Severity: info
Fingerprint: 5733ddf49ff49cd1f5e22fb449f2689fb097f7b806f94e6ce38cd08168c2375c

Public Swagger UI/API detected at path: /api/swagger.json - sample paths:
GET /aboutus/meet-the-team/
GET /blogs/
GET /blogs/categories/
GET /blogs/{blog_id}/comments/
GET /blogs/{id}/
GET /clients/
GET /events/
GET /events/counts/
GET /events/course-category-summary/
GET /events/courses/
GET /events/event-categories/
GET /events/feedback/{event_id}/
GET /events/meta-data/{event_id}/
GET /events/my-courses/
GET /events/total-participants/
GET /events/{event_identifier}/
GET /events/{event_id}/reviews/
GET /gallery
GET /payment/coupons/
GET /privacy-policy/
GET /profile/
GET /profile/address/
GET /profile/apply/
GET /profile/completion/
GET /profile/dra-dashboard/
GET /profile/dra-dashboard/export/
GET /refund-policy/
GET /sampletest/certificates/
GET /sampletest/download-certificate/{uid}/
GET /sampletest/generate-certificate/{sampletest_id}/
GET /sampletest/group-result/{group_id}/
GET /sampletest/group-summary/{group_id}/
GET /sampletest/group/{group_id}/
GET /sampletest/my-test/
GET /sampletest/result/{sampletest_id}/
GET /sampletest/summary/{id}/
GET /sampletest/{id}/
GET /terms-and-condition/
GET /testimonials/
GET /tutorials/
GET /tutorials/{id}/
POST /contact-us/
POST /login/
POST /payment/apply-coupon/
POST /payment/create-payment-order/
POST /payment/doubt-session/create-order/
POST /payment/doubt-session/verify/
POST /payment/payment-callback/
POST /profile/image/
POST /profile/resume/
POST /profile/upload-document/
POST /register
POST /sampletest/mark-review/
POST /sampletest/update-time/
POST /verify-token/

Found on 2025-12-18 11:41

Severity: info
Fingerprint: 5733ddf49ff49cd1f5e22fb449f2689fb097f7b806f94e6ce38cd0811ca5d651

Public Swagger UI/API detected at path: /api/swagger.json - sample paths:
GET /aboutus/meet-the-team/
GET /blogs/
GET /blogs/categories/
GET /blogs/{blog_id}/comments/
GET /blogs/{id}/
GET /clients/
GET /events/
GET /events/counts/
GET /events/course-category-summary/
GET /events/courses/
GET /events/event-categories/
GET /events/feedback/{event_id}/
GET /events/meta-data/{event_id}/
GET /events/my-courses/
GET /events/total-participants/
GET /events/{event_identifier}/
GET /events/{event_id}/reviews/
GET /gallery
GET /payment/coupons/
GET /privacy-policy/
GET /profile/
GET /profile/address/
GET /profile/apply/
GET /profile/completion/
GET /refund-policy/
GET /sampletest/certificates/
GET /sampletest/download-certificate/{uid}/
GET /sampletest/generate-certificate/{sampletest_id}/
GET /sampletest/group-result/{group_id}/
GET /sampletest/group-summary/{group_id}/
GET /sampletest/group/{group_id}/
GET /sampletest/my-test/
GET /sampletest/result/{sampletest_id}/
GET /sampletest/summary/{id}/
GET /sampletest/{id}/
GET /terms-and-condition/
GET /testimonials/
GET /tutorials/
GET /tutorials/{id}/
POST /contact-us/
POST /login/
POST /payment/apply-coupon/
POST /payment/create-payment-order/
POST /payment/doubt-session/create-order/
POST /payment/doubt-session/verify/
POST /payment/payment-callback/
POST /profile/image/
POST /profile/resume/
POST /profile/upload-document/
POST /register
POST /sampletest/mark-review/
POST /sampletest/update-time/
POST /verify-token/

Found on 2025-12-16 09:23

Severity: info
Fingerprint: 5733ddf49ff49cd1f5e22fb449f2689fb097f7b806f94e6ce38cd08120d36881

Public Swagger UI/API detected at path: /api/swagger.json - sample paths:
GET /aboutus/meet-the-team/
GET /blogs/
GET /blogs/categories/
GET /blogs/{blog_id}/comments/
GET /blogs/{id}/
GET /clients/
GET /events/
GET /events/course-category-summary/
GET /events/courses/
GET /events/event-categories/
GET /events/feedback/{event_id}/
GET /events/meta-data/{event_id}/
GET /events/my-courses/
GET /events/total-participants/
GET /events/{event_identifier}/
GET /events/{event_id}/reviews/
GET /gallery
GET /payment/coupons/
GET /privacy-policy/
GET /profile/
GET /profile/address/
GET /profile/apply/
GET /profile/completion/
GET /refund-policy/
GET /sampletest/certificates/
GET /sampletest/download-certificate/{uid}/
GET /sampletest/generate-certificate/{sampletest_id}/
GET /sampletest/group-result/{group_id}/
GET /sampletest/group-summary/{group_id}/
GET /sampletest/group/{group_id}/
GET /sampletest/my-test/
GET /sampletest/result/{sampletest_id}/
GET /sampletest/summary/{id}/
GET /sampletest/{id}/
GET /terms-and-condition/
GET /testimonials/
GET /tutorials/
GET /tutorials/{id}/
POST /contact-us/
POST /login/
POST /payment/apply-coupon/
POST /payment/create-payment-order/
POST /payment/doubt-session/create-order/
POST /payment/doubt-session/verify/
POST /payment/payment-callback/
POST /profile/image/
POST /profile/resume/
POST /profile/upload-document/
POST /register
POST /sampletest/mark-review/
POST /sampletest/update-time/
POST /verify-token/

Found on 2025-12-12 21:08

Severity: info
Fingerprint: 5733ddf49ff49cd1f5e22fb449f2689fb097f7b806f94e6ce38cd08156c264d9

Public Swagger UI/API detected at path: /api/swagger.json - sample paths:
GET /aboutus/meet-the-team/
GET /blogs/
GET /blogs/categories/
GET /blogs/{blog_id}/comments/
GET /blogs/{id}/
GET /clients/
GET /events/
GET /events/course-category-summary/
GET /events/courses/
GET /events/event-categories/
GET /events/feedback/{event_id}/
GET /events/my-courses/
GET /events/{event_identifier}/
GET /events/{event_id}/reviews/
GET /gallery
GET /payment/coupons/
GET /privacy-policy/
GET /profile/
GET /profile/address/
GET /profile/completion/
GET /refund-policy/
GET /sampletest/certificates/
GET /sampletest/download-certificate/{uid}/
GET /sampletest/generate-certificate/{sampletest_id}/
GET /sampletest/group-result/{group_id}/
GET /sampletest/group-summary/{group_id}/
GET /sampletest/group/{group_id}/
GET /sampletest/my-test/
GET /sampletest/result/{sampletest_id}/
GET /sampletest/summary/{id}/
GET /sampletest/{id}/
GET /terms-and-condition/
GET /testimonials/
GET /tutorials/
GET /tutorials/{id}/
POST /contact-us/
POST /login/
POST /payment/apply-coupon/
POST /payment/create-payment-order/
POST /payment/doubt-session/create-order/
POST /payment/doubt-session/verify/
POST /payment/payment-callback/
POST /profile/image/
POST /profile/resume/
POST /profile/upload-document/
POST /register
POST /sampletest/mark-review/
POST /sampletest/update-time/
POST /verify-token/

Found on 2025-11-30 21:18

Severity: info
Fingerprint: 5733ddf49ff49cd1f5e22fb449f2689fb097f7b806f94e6ce38cd0813f64c0a5

Public Swagger UI/API detected at path: /api/swagger.json - sample paths:
GET /aboutus/meet-the-team/
GET /blogs/
GET /blogs/categories/
GET /blogs/{blog_id}/comments/
GET /blogs/{id}/
GET /clients/
GET /events/
GET /events/course-category-summary/
GET /events/courses/
GET /events/event-categories/
GET /events/feedback/{event_id}/
GET /events/my-courses/
GET /events/{event_identifier}/
GET /events/{event_id}/reviews/
GET /gallery
GET /payment/coupons/
GET /privacy-policy/
GET /profile/
GET /profile/address/
GET /profile/completion/
GET /refund-policy/
GET /sampletest/certificates/
GET /sampletest/download-certificate/{uid}/
GET /sampletest/generate-certificate/{sampletest_id}/
GET /sampletest/group-result/{group_id}/
GET /sampletest/group-summary/{group_id}/
GET /sampletest/group/{group_id}/
GET /sampletest/my-test/
GET /sampletest/result/{sampletest_id}/
GET /sampletest/summary/{id}/
GET /sampletest/{id}/
GET /terms-and-condition/
GET /testimonials/
GET /tutorials/
GET /tutorials/{id}/
POST /contact-us/
POST /login/
POST /payment/apply-coupon/
POST /payment/create-payment-order/
POST /payment/payment-callback/
POST /profile/image/
POST /profile/resume/
POST /profile/upload-document/
POST /register
POST /sampletest/mark-review/
POST /sampletest/update-time/
POST /verify-token/

Found on 2025-11-28 14:49

Severity: info
Fingerprint: 5733ddf49ff49cd1f5e22fb449f2689fb097f7b806f94e6ce38cd081f1329726

Public Swagger UI/API detected at path: /api/swagger.json - sample paths:
GET /aboutus/meet-the-team/
GET /blogs/
GET /blogs/categories/
GET /blogs/{blog_id}/comments/
GET /blogs/{id}/
GET /clients/
GET /events/
GET /events/course-category-summary/
GET /events/courses/
GET /events/event-categories/
GET /events/my-courses/
GET /events/{event_identifier}/
GET /events/{event_id}/reviews/
GET /gallery
GET /privacy-policy/
GET /profile/
GET /profile/address/
GET /profile/completion/
GET /refund-policy/
GET /sampletest/certificates/
GET /sampletest/download-certificate/{uid}/
GET /sampletest/generate-certificate/{sampletest_id}/
GET /sampletest/group-result/{group_id}/
GET /sampletest/group-summary/{group_id}/
GET /sampletest/group/{group_id}/
GET /sampletest/my-test/
GET /sampletest/result/{sampletest_id}/
GET /sampletest/summary/{id}/
GET /sampletest/{id}/
GET /terms-and-condition/
GET /testimonials/
GET /tutorials/
GET /tutorials/{id}/
POST /contact-us/
POST /events/submit-feedback/{event_id}/
POST /login/
POST /payment/apply-coupon/
POST /payment/create-payment-order/
POST /payment/payment-callback/
POST /profile/image/
POST /profile/resume/
POST /profile/upload-document/
POST /register
POST /sampletest/mark-review/
POST /sampletest/update-time/
POST /verify-token/

Found on 2025-11-10 12:09

Severity: info
Fingerprint: 5733ddf49ff49cd1f5e22fb449f2689fb097f7b806f94e6ce38cd0812a072b46

Public Swagger UI/API detected at path: /api/swagger.json - sample paths:
GET /aboutus/meet-the-team/
GET /blogs/
GET /blogs/categories/
GET /blogs/{blog_id}/comments/
GET /blogs/{id}/
GET /clients/
GET /events/
GET /events/course-category-summary/
GET /events/courses/
GET /events/event-categories/
GET /events/my-courses/
GET /events/{event_identifier}/
GET /events/{event_id}/reviews/
GET /gallery
GET /privacy-policy/
GET /profile/
GET /profile/address/
GET /profile/completion/
GET /refund-policy/
GET /sampletest/certificates/
GET /sampletest/generate-certificate/{sampletest_id}/
GET /sampletest/group-result/{group_id}/
GET /sampletest/group-summary/{group_id}/
GET /sampletest/group/{group_id}/
GET /sampletest/my-test/
GET /sampletest/result/{sampletest_id}/
GET /sampletest/summary/{id}/
GET /sampletest/{id}/
GET /terms-and-condition/
GET /testimonials/
GET /tutorials/
GET /tutorials/{id}/
POST /contact-us/
POST /events/submit-feedback/{event_id}/
POST /login/
POST /payment/apply-coupon/
POST /payment/create-payment-order/
POST /payment/payment-callback/
POST /profile/image/
POST /profile/resume/
POST /profile/upload-document/
POST /register
POST /sampletest/mark-review/
POST /sampletest/update-time/
POST /verify-token/

Found on 2025-10-26 06:29

Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 75.2.60.68
Domain: loveandcourage.ai
Port: 443
URL: https://loveandcourage.ai

First seen 2025-10-19 00:09
Last seen 2026-01-09 02:32
Open for 82 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1f5e22fb4a8788c34af8beb57f989605b9c7386c01c388340
```
Public Swagger UI/API detected at path: /api/swagger.json - sample paths:
GET /intentions/{profile_id}
GET /intentions/{profile_id}/{intention_id}
GET /moments/{profile_id}
GET /moments/{profile_id}/{moment_id}
GET /profiles/{username}
GET /users/me
POST /contact_messages/
POST /moments/{profile_id}/{moment_id}/tags/{tag_id}
POST /signups/
PUT /intentions/{profile_id}/{intention_id}/context
```
  Found on 2026-01-09 02:32
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 75.2.60.68
Domain: appapi.cambium-inc.com
Port: 80
URL: http://appapi.cambium-inc.com

First seen 2025-11-21 02:29
Last seen 2026-01-09 01:27
Open for 48 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-01-09 01:27
Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 75.2.60.68
Domain: dev-api.cresimplify.com
Port: 80
URL: http://dev-api.cresimplify.com

First seen 2025-10-16 02:28
Last seen 2026-01-09 00:58
Open for 84 days

Severity: info
Fingerprint: 5733ddf49ff49cd1b885ff436bb435dd0d417b6b91288e397d40895ce5eb68d4

Public Swagger UI/API detected at path: /swagger.json - sample paths:
DELETE /authentication/{accessToken}
GET /attachment
GET /attachment/{id}
GET /clients
GET /clients/{clientId}
GET /company
GET /company/{companyId}
GET /contacts
GET /contacts/{contactId}
GET /documents
GET /documents/{documentId}
GET /projects
GET /projects/{projectId}
GET /properties
GET /properties/{propertyId}
GET /properties/{propertyId}/delegates
GET /properties/{propertyId}/media
GET /properties/{propertyId}/media/{propertyMediaId}
GET /proposals
GET /proposals/{proposalId}
GET /subscription
GET /subscription/{id}
GET /users
GET /users/me
GET /users/{userId}
POST /auth-management
POST /authentication
POST /mailer
POST /proposals/{proposalId}/invite
POST /proposals/{proposalId}/reject
POST /proposals/{proposalId}/send
POST /upload
POST /webhook

Found on 2026-01-09 00:58

Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 75.2.60.68
Domain: api.pilonixai.com
Port: 443
URL: https://api.pilonixai.com

First seen 2025-12-12 00:48
Last seen 2026-01-08 23:21
Open for 27 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109
```
Public Swagger UI/API detected at path: /api-docs/swagger.json
```
  Found on 2026-01-08 23:21
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 75.2.60.68
Domain: api.risk-dynamix.com
Port: 443
URL: https://api.risk-dynamix.com

First seen 2025-10-30 01:00
Last seen 2026-01-08 21:04
Open for 70 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109
```
Public Swagger UI/API detected at path: /api-docs/swagger.json
```
  Found on 2026-01-08 21:04
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 75.2.60.68
Domain: hkbn-prod.cheerflow.com.hk
Port: 443
URL: https://hkbn-prod.cheerflow.com.hk

First seen 2025-12-04 00:05
Last seen 2026-01-08 18:57
Open for 35 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd151e75e4bfec17cb25a2b264a8ad4a1fb81f1ac460efa2274
```
Public Swagger UI/API detected at path: /v3/api-docs - sample paths:
GET /external/wechat/{id}
GET /external/whatsapp/v2/{id}
GET /service-now/download/{channel}/{channelId}/{mediaId}
POST /admin/omni-channel/create
POST /admin/omni-channel/delete/{id}
POST /admin/omni-channel/query
POST /admin/omni-channel/update/{id}
POST /external/whatsapp/v2/chat
POST /external/whatsapp/{id}
POST /service-now/message
```
  Found on 2026-01-08 18:57
Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 35.71.179.82
Domain: fr.safejourneyhealth.com
Port: 443
URL: https://fr.safejourneyhealth.com

First seen 2025-10-17 10:34
Last seen 2026-01-05 01:50
Open for 79 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de98bb275be

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : timestamp=2026-01-05T01:50:49Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=5 status=ok

Found on 2026-01-05 01:50

71.7 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de9c1cf12b2

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : responseTimeMs=4 status=ok timestamp=2026-01-05T01:50:48Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip]

Found on 2026-01-05 01:50

71.7 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de995588070

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=4 status=ok timestamp=2026-01-05T01:50:48Z languagesCount=189

Found on 2026-01-05 01:50

71.7 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de9d9898e3e

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=15 status=ok timestamp=2026-01-05T01:50:48Z

Found on 2026-01-05 01:50

71.7 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de9c17c5c60

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : responseTimeMs=21 status=ok timestamp=2026-01-02T02:12:38Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip]

Found on 2026-01-02 02:12

71.7 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de9e3e2ec77

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : responseTimeMs=12 status=ok timestamp=2026-01-01T23:01:46Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip]

Found on 2026-01-01 23:01

71.7 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de96a479e91

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=47 status=ok timestamp=2025-12-30T05:28:42Z

Found on 2025-12-30 05:28

71.7 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de979f71c96

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : timestamp=2025-12-27T02:15:29Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=112 status=ok

Found on 2025-12-27 02:15

71.7 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de9f99e042c

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : responseTimeMs=4 status=ok timestamp=2025-12-26T13:52:10Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip]

Found on 2025-12-26 13:52

72.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de99a44bf81

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=21 status=ok timestamp=2025-12-25T06:17:41Z languagesCount=189

Found on 2025-12-25 06:17

72.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de9e537465f

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=267 status=ok timestamp=2025-12-25T01:15:15Z

Found on 2025-12-25 01:15

72.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de97dd3e34c

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=48 status=ok timestamp=2025-12-23T05:09:38Z languagesCount=189

Found on 2025-12-23 05:09

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de94add73ac

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : status=ok timestamp=2025-12-23T00:41:32Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=328

Found on 2025-12-23 00:41

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa3
```
GraphQL introspection enabled at /graphql
```
Found on 2025-12-21 08:40

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de9e4d0a1ac

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : timestamp=2025-12-21T03:12:47Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=15 status=ok

Found on 2025-12-21 03:12

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de98a699be3

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=6 status=ok timestamp=2025-12-19T09:02:59Z languagesCount=189

Found on 2025-12-19 09:02

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de962a15557

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=134 status=ok timestamp=2025-12-19T01:54:56Z

Found on 2025-12-19 01:54

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de96dddaa91

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=167 status=ok timestamp=2025-12-16T18:47:44Z

Found on 2025-12-16 18:47

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de9bab08cbc

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : timestamp=2025-12-16T12:14:00Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=50 status=ok

Found on 2025-12-16 12:13

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de9fff54447

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=108 status=ok timestamp=2025-12-14T08:24:09Z

Found on 2025-12-14 08:24

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de909438ae7

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : status=ok timestamp=2025-12-13T09:15:38Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=67

Found on 2025-12-13 09:15

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de98fdc5f95

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : responseTimeMs=287 status=ok timestamp=2025-12-12T16:29:29Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip]

Found on 2025-12-12 16:29

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de988fb83f0

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : responseTimeMs=64 status=ok timestamp=2025-12-10T22:30:17Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip]

Found on 2025-12-10 22:30

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de99983582a

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=317 status=ok timestamp=2025-12-10T09:32:46Z

Found on 2025-12-10 09:32

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de994d4061c

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=110 status=ok timestamp=2025-11-30T22:11:46Z languagesCount=189

Found on 2025-11-30 22:11

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250c45334257

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : timestamp=2025-11-07T11:21:05Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=33 status=ok

Found on 2025-11-07 11:20

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250c8dc5b1af

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : timestamp=2025-11-07T09:58:00Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=39 status=ok

Found on 2025-11-07 09:57

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250ce0f4f518

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=41 status=ok timestamp=2025-11-06T00:43:17Z languagesCount=189

Found on 2025-11-06 00:43

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250caab3da76

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : status=ok timestamp=2025-11-06T00:43:17Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=58

Found on 2025-11-06 00:43

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250c42b9b93e

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=58 status=ok timestamp=2025-11-06T00:43:17Z

Found on 2025-11-06 00:43

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250cc76d242f

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=40 status=ok timestamp=2025-11-06T00:43:17Z

Found on 2025-11-06 00:43

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250cfa64e3c4

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=66 status=ok timestamp=2025-11-05T17:00:27Z languagesCount=189

Found on 2025-11-05 17:00

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250c67ef0351

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=45 status=ok timestamp=2025-11-05T12:12:12Z

Found on 2025-11-05 12:11

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250cd7e72a8d

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=54 status=ok timestamp=2025-11-03T17:04:58Z

Found on 2025-11-03 17:04

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250cc2db2c3e

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=58 status=ok timestamp=2025-11-03T08:06:17Z languagesCount=189

Found on 2025-11-03 08:06

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250cca31c039

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=46 status=ok timestamp=2025-11-02T06:56:42Z languagesCount=189

Found on 2025-11-02 06:56

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250cfa447c94

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=43 status=ok timestamp=2025-11-02T01:44:15Z

Found on 2025-11-02 01:44

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250c69b8083d

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : timestamp=2025-10-29T11:08:56Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=44 status=ok

Found on 2025-10-29 11:08

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250c1f298d5a

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : status=ok timestamp=2025-10-29T06:08:53Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=51

Found on 2025-10-29 06:08

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250c3a2c7000

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=41 status=ok timestamp=2025-10-27T10:03:43Z

Found on 2025-10-27 10:03

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250c70b9f24d

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=66 status=ok timestamp=2025-10-27T08:29:31Z languagesCount=189

Found on 2025-10-27 08:29

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250cdcc43023

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : timestamp=2025-10-25T11:43:02Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=39 status=ok

Found on 2025-10-25 11:42

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250c5579b41c

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=40 status=ok timestamp=2025-10-25T08:13:42Z languagesCount=189

Found on 2025-10-25 08:13

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250c03812686

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=67 status=ok timestamp=2025-10-23T14:34:10Z

Found on 2025-10-23 14:34

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250c855541ee

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : timestamp=2025-10-23T12:12:11Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=91 status=ok

Found on 2025-10-23 12:11

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250c105423da

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : responseTimeMs=59 status=ok timestamp=2025-10-21T15:36:23Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip]

Found on 2025-10-21 15:35

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250c4e240901

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=41 status=ok timestamp=2025-10-21T03:08:36Z

Found on 2025-10-21 03:08

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250cd415a6b2

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=36 status=ok timestamp=2025-10-19T10:53:36Z languagesCount=189

Found on 2025-10-19 10:53

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250cc5b6267f

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=42 status=ok timestamp=2025-10-19T03:06:14Z

Found on 2025-10-19 03:06

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250cbbed38da

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : responseTimeMs=44 status=ok timestamp=2025-10-17T10:34:52Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip]

Found on 2025-10-17 10:34

63.8 kBytes 5 rows

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 75.2.60.68
Domain: ecoarnorio.institutocarioca.org.br
Port: 443
URL: https://ecoarnorio.institutocarioca.org.br

First seen 2024-12-11 00:05
Last seen 2026-01-03 01:17
Open for 388 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c0215adfc0215adfc0363d38caf1e6e4b6d09f0917dcb21f6
```
Found 4 files trough .DS_Store spidering:

/assets
/modelo_de_tabela_para_importar_alunos.xlsx
/system
/uploads
```
  Found on 2026-01-03 01:17
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 75.2.60.68
Domain: api.staging.unum.la
Port: 443
URL: https://api.staging.unum.la

First seen 2025-11-18 00:58
Last seen 2026-01-03 00:33
Open for 45 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109
```
Public Swagger UI/API detected at path: /api-docs/swagger.json
```
  Found on 2026-01-03 00:33
Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: fnbeastcle.org
Port: 443
URL: https://fnbeastcle.org

First seen 2025-10-29 00:08
Last seen 2026-01-03 00:17
Open for 66 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3c4d622c565e149075b05cbb10307455d64428e79

GraphQL introspection enabled at /graphql
Types: 97 (by kind: ENUM: 5, INPUT_OBJECT: 26, OBJECT: 56, SCALAR: 8, UNION: 2)
Operations:
- Query: RootQuery | fields: assignment, campaign, currentUser, inviteByHash, organization
- Mutation: RootMutation | fields: createCampaign, createInvite, deleteJob, editCampaign, editOrganization
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2026-01-03 00:17

134.2 kBytes

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 75.2.60.68
Domain: www.partner.preprod.boundless.life
Port: 443
URL: https://www.partner.preprod.boundless.life

First seen 2025-09-02 18:09
Last seen 2026-01-02 23:36
Open for 122 days

Severity: medium
Fingerprint: 5f32cf5d6962f09cb3107650b3107650b1056339cc4bd4f171e04ee9cf4c9c13

Found 39 files trough .DS_Store spidering:

/404.gif
/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/avatars
/BoundlessHosts-type2.svg
/BoundlessHosts-type3.svg
/casa_azul
/circle.png
/coc.pdf
/dashboard
/dashboard/css
/dashboard/css/plugins
/dashboard/css/vendors
/dashboard/css/vendors/bootstrap-sass
/dashboard/fonts
/dashboard/imgs
/dashboard/imgs/almost_there.png
/dashboard/imgs/community_access.jpg
/dashboard/imgs/img.png
/dashboard/imgs/page
/dashboard/imgs/page/dashboard
/dashboard/imgs/slider
/dashboard/imgs/template
/dashboard/js
/empty-2.png
/family-welcome.png
/Family_6.jpg
/favicon.ico
/onboarding-1.png
/onboarding-2.png
/onboarding-3.png
/onboarding-registration.jpeg
/party.png
/referral-agreement.pdf
/robots.txt
/Working_1.png

Found on 2026-01-02 23:36

Severity: medium
Fingerprint: 5f32cf5d6962f09c8efce1938efce19318c11f3a54092988c3fd157ee36cc808

Found 36 files trough .DS_Store spidering:

/404.gif
/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/avatars
/BoundlessHosts-type2.svg
/BoundlessHosts-type3.svg
/casa_azul
/circle.png
/coc.pdf
/dashboard
/dashboard/css
/dashboard/fonts
/dashboard/imgs
/dashboard/imgs/almost_there.png
/dashboard/imgs/community_access.jpg
/dashboard/imgs/img.png
/dashboard/imgs/page
/dashboard/imgs/page/dashboard
/dashboard/imgs/slider
/dashboard/imgs/template
/dashboard/js
/empty-2.png
/family-welcome.png
/Family_6.jpg
/favicon.ico
/onboarding-1.png
/onboarding-2.png
/onboarding-3.png
/onboarding-registration.jpeg
/party.png
/referral-agreement.pdf
/robots.txt
/Working_1.png

Found on 2026-01-01 01:33

Severity: low
Fingerprint: 5f32cf5d6962f09c81c345f781c345f7cb18f7eed688a27cdb7f63ca3f32fe56

Found 32 files trough .DS_Store spidering:

/404.gif
/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/avatars
/BoundlessHosts-type2.svg
/BoundlessHosts-type3.svg
/casa_azul
/circle.png
/coc.pdf
/dashboard
/dashboard/css
/dashboard/css/plugins
/dashboard/css/vendors
/dashboard/css/vendors/bootstrap-sass
/dashboard/fonts
/dashboard/imgs
/dashboard/js
/empty-2.png
/family-welcome.png
/Family_6.jpg
/favicon.ico
/onboarding-1.png
/onboarding-2.png
/onboarding-3.png
/onboarding-registration.jpeg
/party.png
/referral-agreement.pdf
/robots.txt
/Working_1.png

Found on 2025-11-30 23:16

Severity: medium
Fingerprint: 5f32cf5d6962f09c8f03d7bd8f03d7bd18b54d047ac2f1ae5b63f538d274b1eb

Found 38 files trough .DS_Store spidering:

/404.gif
/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/avatars
/BoundlessHosts-type2.svg
/BoundlessHosts-type3.svg
/casa_azul
/circle.png
/coc.pdf
/dashboard
/dashboard/css
/dashboard/css/plugins
/dashboard/css/vendors
/dashboard/css/vendors/bootstrap-sass
/dashboard/fonts
/dashboard/imgs
/dashboard/imgs/almost_there.png
/dashboard/imgs/community_access.jpg
/dashboard/imgs/img.png
/dashboard/imgs/page
/dashboard/imgs/slider
/dashboard/imgs/template
/dashboard/js
/empty-2.png
/family-welcome.png
/Family_6.jpg
/favicon.ico
/onboarding-1.png
/onboarding-2.png
/onboarding-3.png
/onboarding-registration.jpeg
/party.png
/referral-agreement.pdf
/robots.txt
/Working_1.png

Found on 2025-11-10 17:17

Severity: medium
Fingerprint: 5f32cf5d6962f09cd4047824d40478245601babd5aabdea5e7f84cc577641ecc

Found 35 files trough .DS_Store spidering:

/404.gif
/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/avatars
/BoundlessHosts-type2.svg
/BoundlessHosts-type3.svg
/casa_azul
/circle.png
/coc.pdf
/dashboard
/dashboard/css
/dashboard/fonts
/dashboard/imgs
/dashboard/imgs/almost_there.png
/dashboard/imgs/community_access.jpg
/dashboard/imgs/img.png
/dashboard/imgs/page
/dashboard/imgs/slider
/dashboard/imgs/template
/dashboard/js
/empty-2.png
/family-welcome.png
/Family_6.jpg
/favicon.ico
/onboarding-1.png
/onboarding-2.png
/onboarding-3.png
/onboarding-registration.jpeg
/party.png
/referral-agreement.pdf
/robots.txt
/Working_1.png

Found on 2025-09-15 11:18

Severity: low
Fingerprint: 5f32cf5d6962f09ca0cc0fcfa0cc0fcf4b1670d6ee15c124d92405122d1fea98

Found 25 files trough .DS_Store spidering:

/404.gif
/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/avatars
/BoundlessHosts-type2.svg
/BoundlessHosts-type3.svg
/casa_azul
/circle.png
/coc.pdf
/dashboard
/empty-2.png
/family-welcome.png
/Family_6.jpg
/favicon.ico
/onboarding-1.png
/onboarding-2.png
/onboarding-3.png
/onboarding-registration.jpeg
/party.png
/referral-agreement.pdf
/robots.txt
/Working_1.png

Found on 2025-09-15 11:18

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 35.71.179.82
Domain: preprod.boundless.life
Port: 443
URL: https://preprod.boundless.life

First seen 2025-09-02 18:11
Last seen 2026-01-02 23:36
Open for 122 days

Severity: medium
Fingerprint: 5f32cf5d6962f09cb3107650b3107650b1056339cc4bd4f171e04ee9cf4c9c13

Found 39 files trough .DS_Store spidering:

/404.gif
/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/avatars
/BoundlessHosts-type2.svg
/BoundlessHosts-type3.svg
/casa_azul
/circle.png
/coc.pdf
/dashboard
/dashboard/css
/dashboard/css/plugins
/dashboard/css/vendors
/dashboard/css/vendors/bootstrap-sass
/dashboard/fonts
/dashboard/imgs
/dashboard/imgs/almost_there.png
/dashboard/imgs/community_access.jpg
/dashboard/imgs/img.png
/dashboard/imgs/page
/dashboard/imgs/page/dashboard
/dashboard/imgs/slider
/dashboard/imgs/template
/dashboard/js
/empty-2.png
/family-welcome.png
/Family_6.jpg
/favicon.ico
/onboarding-1.png
/onboarding-2.png
/onboarding-3.png
/onboarding-registration.jpeg
/party.png
/referral-agreement.pdf
/robots.txt
/Working_1.png

Found on 2026-01-02 23:36

Severity: low
Fingerprint: 5f32cf5d6962f09ca0cc0fcfa0cc0fcf4b1670d6ee15c124d92405122d1fea98

Found 25 files trough .DS_Store spidering:

/404.gif
/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/avatars
/BoundlessHosts-type2.svg
/BoundlessHosts-type3.svg
/casa_azul
/circle.png
/coc.pdf
/dashboard
/empty-2.png
/family-welcome.png
/Family_6.jpg
/favicon.ico
/onboarding-1.png
/onboarding-2.png
/onboarding-3.png
/onboarding-registration.jpeg
/party.png
/referral-agreement.pdf
/robots.txt
/Working_1.png

Found on 2026-01-01 01:33

Severity: low
Fingerprint: 5f32cf5d6962f09c2a439cf82a439cf83f767ad179308669b8d34aa1ccb92a48

Found 31 files trough .DS_Store spidering:

/404.gif
/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/avatars
/BoundlessHosts-type2.svg
/BoundlessHosts-type3.svg
/casa_azul
/circle.png
/coc.pdf
/dashboard
/dashboard/css
/dashboard/css/plugins
/dashboard/css/vendors
/dashboard/fonts
/dashboard/imgs
/dashboard/js
/empty-2.png
/family-welcome.png
/Family_6.jpg
/favicon.ico
/onboarding-1.png
/onboarding-2.png
/onboarding-3.png
/onboarding-registration.jpeg
/party.png
/referral-agreement.pdf
/robots.txt
/Working_1.png

Found on 2025-11-15 14:17

Severity: low
Fingerprint: 5f32cf5d6962f09c81c345f781c345f7cb18f7eed688a27cdb7f63ca3f32fe56

Found 32 files trough .DS_Store spidering:

/404.gif
/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/avatars
/BoundlessHosts-type2.svg
/BoundlessHosts-type3.svg
/casa_azul
/circle.png
/coc.pdf
/dashboard
/dashboard/css
/dashboard/css/plugins
/dashboard/css/vendors
/dashboard/css/vendors/bootstrap-sass
/dashboard/fonts
/dashboard/imgs
/dashboard/js
/empty-2.png
/family-welcome.png
/Family_6.jpg
/favicon.ico
/onboarding-1.png
/onboarding-2.png
/onboarding-3.png
/onboarding-registration.jpeg
/party.png
/referral-agreement.pdf
/robots.txt
/Working_1.png

Found on 2025-11-15 14:17

Severity: medium
Fingerprint: 5f32cf5d6962f09c8efce1938efce19318c11f3a54092988c3fd157ee36cc808

Found 36 files trough .DS_Store spidering:

/404.gif
/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/avatars
/BoundlessHosts-type2.svg
/BoundlessHosts-type3.svg
/casa_azul
/circle.png
/coc.pdf
/dashboard
/dashboard/css
/dashboard/fonts
/dashboard/imgs
/dashboard/imgs/almost_there.png
/dashboard/imgs/community_access.jpg
/dashboard/imgs/img.png
/dashboard/imgs/page
/dashboard/imgs/page/dashboard
/dashboard/imgs/slider
/dashboard/imgs/template
/dashboard/js
/empty-2.png
/family-welcome.png
/Family_6.jpg
/favicon.ico
/onboarding-1.png
/onboarding-2.png
/onboarding-3.png
/onboarding-registration.jpeg
/party.png
/referral-agreement.pdf
/robots.txt
/Working_1.png

Found on 2025-11-02 00:38

Severity: medium
Fingerprint: 5f32cf5d6962f09c8f03d7bd8f03d7bd18b54d047ac2f1ae5b63f538d274b1eb

Found 38 files trough .DS_Store spidering:

/404.gif
/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/avatars
/BoundlessHosts-type2.svg
/BoundlessHosts-type3.svg
/casa_azul
/circle.png
/coc.pdf
/dashboard
/dashboard/css
/dashboard/css/plugins
/dashboard/css/vendors
/dashboard/css/vendors/bootstrap-sass
/dashboard/fonts
/dashboard/imgs
/dashboard/imgs/almost_there.png
/dashboard/imgs/community_access.jpg
/dashboard/imgs/img.png
/dashboard/imgs/page
/dashboard/imgs/slider
/dashboard/imgs/template
/dashboard/js
/empty-2.png
/family-welcome.png
/Family_6.jpg
/favicon.ico
/onboarding-1.png
/onboarding-2.png
/onboarding-3.png
/onboarding-registration.jpeg
/party.png
/referral-agreement.pdf
/robots.txt
/Working_1.png

Found on 2025-09-02 18:11

Severity: medium
Fingerprint: 5f32cf5d6962f09c8f03d7bd8f03d7bd18b54d047ac2f1ae5b63f538f5cf9851

Found 38 files trough .DS_Store spidering:

/404.gif
/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/avatars
/BoundlessHosts-type2.svg
/BoundlessHosts-type3.svg
/casa_azul
/circle.png
/coc.pdf
/dashboard
/dashboard/css
/dashboard/css/plugins
/dashboard/css/vendors
/dashboard/fonts
/dashboard/imgs
/dashboard/imgs/almost_there.png
/dashboard/imgs/community_access.jpg
/dashboard/imgs/img.png
/dashboard/imgs/page
/dashboard/imgs/page/dashboard
/dashboard/imgs/slider
/dashboard/imgs/template
/dashboard/js
/empty-2.png
/family-welcome.png
/Family_6.jpg
/favicon.ico
/onboarding-1.png
/onboarding-2.png
/onboarding-3.png
/onboarding-registration.jpeg
/party.png
/referral-agreement.pdf
/robots.txt
/Working_1.png

Found on 2025-09-02 18:11

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: it.safejourneyhealth.com
Port: 443
URL: https://it.safejourneyhealth.com

First seen 2025-10-19 00:09
Last seen 2026-01-02 23:24
Open for 75 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de9b03d4cb3

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=6 status=ok timestamp=2026-01-02T23:24:34Z

Found on 2026-01-02 23:24

71.7 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de9d3a5ca8b

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : status=ok timestamp=2026-01-02T07:09:37Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=4

Found on 2026-01-02 07:09

71.7 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de9356c8365

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=4 status=ok timestamp=2025-12-30T09:45:44Z

Found on 2025-12-30 09:45

71.7 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de9309ee9a3

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=1220 status=ok timestamp=2025-12-27T07:56:54Z

Found on 2025-12-27 07:56

71.7 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de9ac9ef6b6

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : responseTimeMs=6 status=ok timestamp=2025-12-27T07:11:51Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip]

Found on 2025-12-27 07:11

71.7 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de975605aff

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : responseTimeMs=5 status=ok timestamp=2025-12-25T08:04:50Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip]

Found on 2025-12-25 08:04

72.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de95bbd4882

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=7 status=ok timestamp=2025-12-25T07:55:54Z

Found on 2025-12-25 07:55

72.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de97474bcdb

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : timestamp=2025-12-23T10:03:15Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=4 status=ok

Found on 2025-12-23 10:03

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de94fe8115f

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : status=ok timestamp=2025-12-23T09:33:10Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=6

Found on 2025-12-23 09:33

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de9a6e0c578

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : timestamp=2025-12-21T11:37:39Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=144 status=ok

Found on 2025-12-21 11:37

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de957a6f4da

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : status=ok timestamp=2025-12-21T10:00:29Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=5

Found on 2025-12-21 10:00

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa3
```
GraphQL introspection enabled at /graphql
```
Found on 2025-12-19 12:12

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de9ca75d68d

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : responseTimeMs=6 status=ok timestamp=2025-12-19T12:12:29Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip]

Found on 2025-12-19 12:12

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de9e6a38b57

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : status=ok timestamp=2025-12-19T12:12:33Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=12

Found on 2025-12-19 12:12

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de965387aed

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : responseTimeMs=4 status=ok timestamp=2025-12-19T12:12:30Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip]

Found on 2025-12-19 12:12

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de9db77e665

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=5 status=ok timestamp=2025-12-19T11:24:31Z languagesCount=189

Found on 2025-12-19 11:24

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de9379c24bd

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=48 status=ok timestamp=2025-12-18T11:37:35Z

Found on 2025-12-18 11:37

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de90a7ac7c0

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : timestamp=2025-12-17T04:06:14Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=49 status=ok

Found on 2025-12-17 04:06

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de9ba0019e8

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : timestamp=2025-12-16T18:35:57Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=48 status=ok

Found on 2025-12-16 18:35

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de94f44a9b6

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=40 status=ok timestamp=2025-12-14T13:35:41Z

Found on 2025-12-14 13:35

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de972b86d00

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=43 status=ok timestamp=2025-12-13T19:54:37Z

Found on 2025-12-13 19:54

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de9837c59b5

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=66 status=ok timestamp=2025-12-13T19:44:10Z

Found on 2025-12-13 19:44

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de9236276a3

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : responseTimeMs=47 status=ok timestamp=2025-12-11T14:28:18Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip]

Found on 2025-12-11 14:28

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de9baf65375

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=45 status=ok timestamp=2025-12-01T19:56:42Z

Found on 2025-12-01 19:56

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de94a36ab9c

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : status=ok timestamp=2025-12-01T05:31:51Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=444

Found on 2025-12-01 05:31

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250cad2f84ff

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : status=ok timestamp=2025-11-10T09:11:05Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=152

Found on 2025-11-10 09:10

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250c5156b16e

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : responseTimeMs=54 status=ok timestamp=2025-11-08T07:14:12Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip]

Found on 2025-11-08 07:14

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250ccfd8e11c

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : timestamp=2025-11-08T05:42:09Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=71 status=ok

Found on 2025-11-08 05:42

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250c7da7e6f0

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=30 status=ok timestamp=2025-11-07T10:26:38Z

Found on 2025-11-07 10:26

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250cd4cb1f88

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=36 status=ok timestamp=2025-11-07T08:39:26Z languagesCount=189

Found on 2025-11-07 08:38

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250cbd72392c

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : timestamp=2025-11-05T06:16:58Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=50 status=ok

Found on 2025-11-05 06:16

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250c3bab56e3

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=40 status=ok timestamp=2025-11-05T01:01:51Z

Found on 2025-11-05 01:01

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250c33b8cde0

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : responseTimeMs=63 status=ok timestamp=2025-11-03T16:13:43Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip]

Found on 2025-11-03 16:13

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250c36b0a1e6

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : status=ok timestamp=2025-11-03T08:41:44Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=37

Found on 2025-11-03 08:41

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250c4cda9da5

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : status=ok timestamp=2025-11-02T10:15:48Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=40

Found on 2025-11-02 10:15

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250cc1d1abdd

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=48 status=ok timestamp=2025-11-02T04:10:28Z

Found on 2025-11-02 04:10

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250c2732e008

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=45 status=ok timestamp=2025-10-29T10:11:11Z languagesCount=189

Found on 2025-10-29 10:10

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250c1157379d

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : responseTimeMs=52 status=ok timestamp=2025-10-29T08:58:25Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip]

Found on 2025-10-29 08:58

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250cdbd82cef

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=37 status=ok timestamp=2025-10-27T10:22:22Z

Found on 2025-10-27 10:22

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250c687fca1a

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=41 status=ok timestamp=2025-10-27T09:54:14Z

Found on 2025-10-27 09:54

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250c6277f71a

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=48 status=ok timestamp=2025-10-25T11:23:38Z

Found on 2025-10-25 11:23

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250c46998cc6

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=48 status=ok timestamp=2025-10-25T01:40:16Z

Found on 2025-10-25 01:40

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250c24be9ecd

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=845 status=ok timestamp=2025-10-23T16:09:20Z languagesCount=189

Found on 2025-10-23 16:09

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250c2807ac32

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=35 status=ok timestamp=2025-10-22T07:58:47Z

Found on 2025-10-22 07:58

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250c68c664eb

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : responseTimeMs=51 status=ok timestamp=2025-10-21T13:54:42Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip]

Found on 2025-10-21 13:54

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250c0632c507

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : status=ok timestamp=2025-10-21T00:14:26Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=44

Found on 2025-10-21 00:14

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250c39873b1b

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=37 status=ok timestamp=2025-10-19T00:09:38Z

Found on 2025-10-19 00:09

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250cd973baf3

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=102 status=ok timestamp=2025-10-19T00:09:19Z

Found on 2025-10-19 00:09

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250caf244317

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : responseTimeMs=37 status=ok timestamp=2025-10-19T00:09:21Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip]

Found on 2025-10-19 00:09

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250cb6564511

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : responseTimeMs=35 status=ok timestamp=2025-10-19T00:09:21Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip]

Found on 2025-10-19 00:09

63.8 kBytes 5 rows

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: api-editor.devoutsourcing.com
Port: 443
URL: https://api-editor.devoutsourcing.com

First seen 2025-11-24 01:36
Last seen 2026-01-02 23:16
Open for 39 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3d8cee82a540f0a1ae3344268ad23cae4ac765ddc

GraphQL introspection enabled at /graphql
Types: 94 (by kind: ENUM: 2, INPUT_OBJECT: 21, OBJECT: 61, SCALAR: 9, UNION: 1)
Operations:
- Query: Query | fields: authors, authors_aggregated, authors_by_id, blocks_templates, blocks_templates_by_id
- Mutation: Mutation | fields: create_quiz_vizits_item, create_quiz_vizits_items, update_quiz_vizits_batch, update_quiz_vizits_item, update_quiz_vizits_items
Directives: deprecated, include, skip (total: 3)

Readable stores: 0

Found on 2026-01-02 23:16

192.7 kBytes

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: admin.feedbackforward.org
Port: 80
URL: http://admin.feedbackforward.org

First seen 2025-11-24 01:26
Last seen 2026-01-02 22:51
Open for 39 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3400105ec05482f709bb2e5e59b271c805a001e70

GraphQL introspection enabled at /graphql
Types: 207 (by kind: ENUM: 16, INPUT_OBJECT: 43, INTERFACE: 2, OBJECT: 138, SCALAR: 8)
Operations:
- Query: Query | fields: getGroupCountsInClass, getGroupsInClass, getGroupsInClasses, getStudentClassGoal, group
- Mutation: Mutation | fields: addStudentsToGroup, createGroup, deleteGroup, mutateStudentClassGoal, removeStudentsFromGroup
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2026-01-02 22:51

391.7 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3b4b02ad4aa531518a03d4c5d11f6cf68b7f2d088

GraphQL introspection enabled at /graphql
Types: 194 (by kind: ENUM: 13, INPUT_OBJECT: 40, INTERFACE: 2, OBJECT: 131, SCALAR: 8)
Operations:
- Query: Query | fields: getGroupCountsInClass, getGroupsInClass, getGroupsInClasses, getStudentClassGoal, group
- Mutation: Mutation | fields: addStudentsToGroup, createGroup, deleteGroup, mutateStudentClassGoal, removeStudentsFromGroup
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2025-12-30 13:23

378.2 kBytes

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: api.feedbackforward.org
Port: 443
URL: https://api.feedbackforward.org

First seen 2025-11-15 01:41
Last seen 2026-01-02 22:41
Open for 48 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3400105ec05482f709bb2e5e59b271c805a001e70

GraphQL introspection enabled at /graphql
Types: 207 (by kind: ENUM: 16, INPUT_OBJECT: 43, INTERFACE: 2, OBJECT: 138, SCALAR: 8)
Operations:
- Query: Query | fields: getGroupCountsInClass, getGroupsInClass, getGroupsInClasses, getStudentClassGoal, group
- Mutation: Mutation | fields: addStudentsToGroup, createGroup, deleteGroup, mutateStudentClassGoal, removeStudentsFromGroup
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2026-01-02 22:41

391.7 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3b4b02ad4aa531518a03d4c5d11f6cf68b7f2d088

GraphQL introspection enabled at /graphql
Types: 194 (by kind: ENUM: 13, INPUT_OBJECT: 40, INTERFACE: 2, OBJECT: 131, SCALAR: 8)
Operations:
- Query: Query | fields: getGroupCountsInClass, getGroupsInClass, getGroupsInClasses, getStudentClassGoal, group
- Mutation: Mutation | fields: addStudentsToGroup, createGroup, deleteGroup, mutateStudentClassGoal, removeStudentsFromGroup
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2025-12-27 02:16

378.2 kBytes

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: api.compe.shinkenchiku.online
Port: 443
URL: https://api.compe.shinkenchiku.online

First seen 2025-11-19 01:21
Last seen 2026-01-02 22:30
Open for 44 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa31a947f5000ea5994c7c8a415a12b061119d3cfb5

GraphQL introspection enabled at /graphql
Types: 41 (by kind: ENUM: 4, INPUT_OBJECT: 5, OBJECT: 26, SCALAR: 6)
Operations:
- Query: Query | fields: competition, competitionShowcase, organisedCompetitionRegistrations, organisedCompetitions, registrationForm
- Mutation: Mutation | fields: register, submit, updateRegistration, updateSubmission
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 0

Found on 2026-01-02 22:30

48.1 kBytes

Create report

GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 13.248.244.96
Domain: app.brg.link
Port: 443
URL: https://app.brg.link

First seen 2025-12-07 00:35
Last seen 2026-01-02 22:26
Open for 26 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa36dc9bbda239ececa4bf4af78b45767825beff6ae
```
GraphQL introspection enabled at /graphql
Types: 165 (by kind: ENUM: 11, INPUT_OBJECT: 35, INTERFACE: 1, OBJECT: 108, SCALAR: 10)
Operations:
- Query: Query | fields: mySuperVolunteerShifts, productPrices, products, ssoConnection, superVolunteers
- Mutation: Mutation | fields: createSSOConnection, createSuperVolunteerStatus, removeSSOConnection, removeSuperVolunteerStatus, updateSSOConnection
Directives: include, skip (total: 2)
```
  Found on 2026-01-02 22:26
  
  231.4 kBytes
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa3
```
GraphQL introspection enabled at /graphql
```
  Found on 2025-12-07 00:35
Create report
GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: graphql.td.org
Port: 443
URL: https://graphql.td.org

First seen 2025-12-02 00:52
Last seen 2026-01-02 22:16
Open for 31 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa3c1ce71c0d8dfba0404fd84bcc66bf77513a91101
```
GraphQL introspection enabled at /graphql
Types: 236 (by kind: ENUM: 27, INPUT_OBJECT: 54, INTERFACE: 8, OBJECT: 141, SCALAR: 6)
Operations:
- Query: Query | fields: order, orderInfo, orderInvoiceUrl, orders, user
- Mutation: Mutation | fields: updateEmail, userEducationUpsert, userJobUpdate, userProfileUpdate, userUpsert
Directives: deprecated, include, skip, specifiedBy (total: 4)
```
  Found on 2026-01-02 22:16
  
  335.5 kBytes
Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: api.dock.lol
Port: 80
URL: http://api.dock.lol

First seen 2025-11-13 02:53
Last seen 2026-01-02 22:04
Open for 50 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa3
```
GraphQL introspection enabled at /graphql
```
Found on 2026-01-02 22:04

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa34f2a33cacd4c89fadc42255234b3ab9cbaf913bd

GraphQL introspection enabled at /graphql
Types: 1226 (by kind: ENUM: 183, INPUT_OBJECT: 109, INTERFACE: 14, OBJECT: 912, SCALAR: 7, UNION: 1)
Operations:
- Query: Query | fields: analytics, asanaIntegration, asset, linkAsanaToken, paginatedApiKeys
- Mutation: Mutation | fields: deleteTimeline, deleteTimelinePhase, deleteWidgetStyle, hubspotTicketResync, updateWidgetStyle
- Subscription: Subscription | fields: projectPlanUpdated
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2025-12-01 10:36

2.5 MBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa327e4a930c898f4b46d13a554a526534a21c16537

GraphQL introspection enabled at /graphql
Types: 1219 (by kind: ENUM: 182, INPUT_OBJECT: 108, INTERFACE: 14, OBJECT: 907, SCALAR: 7, UNION: 1)
Operations:
- Query: Query | fields: analytics, asanaIntegration, asset, linkAsanaToken, paginatedApiKeys
- Mutation: Mutation | fields: deleteTimeline, deleteTimelinePhase, deleteWidgetStyle, hubspotTicketResync, updateWidgetStyle
- Subscription: Subscription | fields: projectPlanUpdated
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2025-11-27 10:51

2.5 MBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa33f554be5cc73cc6752c5814dc9429d25f8492a06

GraphQL introspection enabled at /graphql
Types: 1216 (by kind: ENUM: 181, INPUT_OBJECT: 108, INTERFACE: 14, OBJECT: 906, SCALAR: 7)
Operations:
- Query: Query | fields: analytics, asanaIntegration, asset, linkAsanaToken, paginatedApiKeys
- Mutation: Mutation | fields: deleteTimeline, deleteTimelinePhase, deleteWidgetStyle, hubspotTicketResync, updateWidgetStyle
- Subscription: Subscription | fields: projectPlanUpdated
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2025-11-21 05:46

2.5 MBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3b8991a7a65bf472aab77308269c61e0c4311f82d

GraphQL introspection enabled at /graphql
Types: 1189 (by kind: ENUM: 181, INPUT_OBJECT: 108, INTERFACE: 13, OBJECT: 880, SCALAR: 7)
Operations:
- Query: Query | fields: analytics, asanaIntegration, asset, linkAsanaToken, paginatedApiKeys
- Mutation: Mutation | fields: deleteTimeline, deleteTimelinePhase, deleteWidgetStyle, hubspotTicketResync, updateWidgetStyle
- Subscription: Subscription | fields: projectPlanUpdated
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2025-11-16 23:12

2.4 MBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa36f6ce28884a65bac96308a6ca2a722929f4de93f

GraphQL introspection enabled at /graphql
Types: 1178 (by kind: ENUM: 181, INPUT_OBJECT: 105, INTERFACE: 13, OBJECT: 872, SCALAR: 7)
Operations:
- Query: Query | fields: analytics, asanaIntegration, asset, linkAsanaToken, paginatedApiKeys
- Mutation: Mutation | fields: deleteTimeline, deleteTimelinePhase, deleteWidgetStyle, hubspotTicketResync, updateWidgetStyle
- Subscription: Subscription | fields: projectPlanUpdated
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2025-11-13 02:53

2.4 MBytes

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: cms.fundacioncaricaco.org
Port: 443
URL: https://cms.fundacioncaricaco.org

First seen 2025-11-23 00:21
Last seen 2026-01-02 22:04
Open for 40 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa397c01c7b1c2a9779a8bfc66ab90ace68460f90ba

GraphQL introspection enabled at /graphql
Types: 233 (by kind: ENUM: 4, INPUT_OBJECT: 75, OBJECT: 143, SCALAR: 10, UNION: 1)
Operations:
- Query: Query | fields: uploadFile, uploadFiles, usersPermissionsRole, usersPermissionsRoles, usersPermissionsUser
- Mutation: Mutation | fields: createAlianza, createUploadFile, deleteUploadFile, updateAlianza, updateUploadFile
Directives: deprecated, include, skip, specifiedBy (total: 4)

Found on 2026-01-02 22:04

293.2 kBytes

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 75.2.60.68
Domain: dashboard.estock.solutions
Port: 443
URL: https://dashboard.estock.solutions

First seen 2025-11-23 18:25
Last seen 2026-01-02 21:50
Open for 40 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c4239b3d84239b3d808c457e038380c8eb89a7f078a3f6047
```
Found 8 files trough .DS_Store spidering:

/favicon.ico
/index.html
/logo.png
/logo.svg
/logo192.png
/logo512.png
/manifest.json
/robots.txt
```
  Found on 2026-01-02 21:50
Create report
GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: app-staging.readyrosie.com
Port: 443
URL: https://app-staging.readyrosie.com

First seen 2025-11-21 00:38
Last seen 2026-01-02 21:30
Open for 42 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa3c2ada43cc61f170097f3777584fc0824272ae584
```
GraphQL introspection enabled at /graphql
Types: 46 (by kind: ENUM: 2, OBJECT: 40, SCALAR: 4)
Operations:
- Query: Query | fields: ages, class_types, classroom_caregiver_counts, content_areas, curriculum_categories
- Mutation: Mutation | fields: completeActivity, createConnectionRequest, favoriteVideo, rateVideo, registerUser
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)
```
  Found on 2026-01-02 21:30
  
  85.8 kBytes
Create report
GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: api.staging.bailfundapp.org
Port: 443
URL: https://api.staging.bailfundapp.org

First seen 2025-11-12 00:13
Last seen 2026-01-02 21:26
Open for 51 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa3ba4c71803ae89744cb11c09ff196c30fa663c3d3
```
GraphQL introspection enabled at /graphql
Types: 117 (by kind: ENUM: 15, INPUT_OBJECT: 45, OBJECT: 51, SCALAR: 6)
Operations:
- Query: Queries | fields: documents, duplicateQueryResults, listUsers, organization, userInfo
- Mutation: Mutations | fields: createView, deleteView, updateFlags, updateUserData, updateView
Directives: include, skip (total: 2)
```
  Found on 2026-01-02 21:26
  
  125.8 kBytes
Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 3.33.193.101
Domain: backend.auggie.com
Port: 443
URL: https://backend.auggie.com

First seen 2025-11-01 12:09
Last seen 2026-01-02 21:22
Open for 62 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3753d1656870af38602157f2451339f772f621fcf

GraphQL introspection enabled at /graphql
Types: 194 (by kind: ENUM: 22, INPUT_OBJECT: 85, OBJECT: 80, SCALAR: 7)
Operations:
- Query: Query | fields: fetchUserWithRefferals, getUserProfile, getUserRefferals, paginatedUsers, publicFindUserById
- Mutation: Mutation | fields: checkIfUserExists, createChild, createUserReport, deleteChild, updateChild
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2026-01-02 21:22

348.0 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa317cc9f30872046b4b6947eaee0130c65a1b7ed31

GraphQL introspection enabled at /graphql
Types: 174 (by kind: ENUM: 22, INPUT_OBJECT: 73, OBJECT: 72, SCALAR: 7)
Operations:
- Query: Query | fields: fetchUserWithRefferals, getUserProfile, getUserRefferals, paginatedUsers, publicFindUserById
- Mutation: Mutation | fields: checkIfUserExists, createChild, createUserReport, deleteChild, updateChild
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2025-11-30 22:33

297.6 kBytes

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 13.248.244.96
Domain: www.meta-anchor.com
Port: 443
URL: https://www.meta-anchor.com

First seen 2025-05-28 01:17
Last seen 2026-01-02 20:47
Open for 219 days

Severity: low
Fingerprint: 5f32cf5d6962f09c7cf176427cf176423f3e94dee53e19e1e53e19e1e53e19e1
```
Found 2 files trough .DS_Store spidering:

/assets
/uploads
```
Found on 2026-01-02 20:47

Severity: low
Fingerprint: 5f32cf5d6962f09cdafa5447dafa5447b671e3e95092313e83e9d9a3be1e68f2

Found 18 files trough .DS_Store spidering:

/assets
/uploads
/uploads/item_image
/uploads/item_image/image
/uploads/item_image/image/1
/uploads/item_image/image/2
/uploads/item_image/image/3
/uploads/item_image/image/4
/uploads/product
/uploads/product/product_image
/uploads/product/product_image/1
/uploads/product/product_image/2
/uploads/tmp
/uploads/tmp/1695626173-450992166375541-0001-0685
/uploads/tmp/1696404755-253954344917405-0001-1507
/uploads/tmp/1696404776-997569988427667-0002-5843
/uploads/tmp/1696404813-353664039788471-0003-9337
/uploads/worker

Found on 2025-08-26 06:43

Severity: low
Fingerprint: 5f32cf5d6962f09c39aac35b39aac35bf639e88d273b218a60bae82fd7cac186

Found 14 files trough .DS_Store spidering:

/assets
/uploads
/uploads/item_image
/uploads/item_image/image
/uploads/item_image/image/1
/uploads/item_image/image/2
/uploads/item_image/image/3
/uploads/item_image/image/4
/uploads/product
/uploads/product/product_image
/uploads/product/product_image/1
/uploads/product/product_image/2
/uploads/tmp
/uploads/worker

Found on 2025-07-28 00:11

Severity: low
Fingerprint: 5f32cf5d6962f09c39aac35b39aac35bf639e88d273b218a60bae82f8dc1d69e

Found 14 files trough .DS_Store spidering:

/assets
/uploads
/uploads/item_image
/uploads/item_image/image
/uploads/product
/uploads/product/product_image
/uploads/product/product_image/1
/uploads/product/product_image/2
/uploads/tmp
/uploads/tmp/1695626173-450992166375541-0001-0685
/uploads/tmp/1696404755-253954344917405-0001-1507
/uploads/tmp/1696404776-997569988427667-0002-5843
/uploads/tmp/1696404813-353664039788471-0003-9337
/uploads/worker

Found on 2025-07-28 00:11

Severity: low
Fingerprint: 5f32cf5d6962f09c11d3744d11d3744d336cbabb3f6aff6ca01b31e54905ed1d

Found 12 files trough .DS_Store spidering:

/assets
/uploads
/uploads/item_image
/uploads/item_image/image
/uploads/item_image/image/1
/uploads/item_image/image/2
/uploads/item_image/image/3
/uploads/item_image/image/4
/uploads/product
/uploads/product/product_image
/uploads/tmp
/uploads/worker

Found on 2025-06-10 20:46

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 13.248.244.96
Domain: www.members.comoly.jp
Port: 443
URL: https://www.members.comoly.jp

First seen 2025-05-28 01:16
Last seen 2026-01-02 20:47
Open for 219 days

Severity: low
Fingerprint: 5f32cf5d6962f09c7cf176427cf176423f3e94dee53e19e1e53e19e1e53e19e1
```
Found 2 files trough .DS_Store spidering:

/assets
/uploads
```
Found on 2026-01-02 20:47

Severity: low
Fingerprint: 5f32cf5d6962f09cdafa5447dafa5447b671e3e95092313e83e9d9a3be1e68f2

Found 18 files trough .DS_Store spidering:

/assets
/uploads
/uploads/item_image
/uploads/item_image/image
/uploads/item_image/image/1
/uploads/item_image/image/2
/uploads/item_image/image/3
/uploads/item_image/image/4
/uploads/product
/uploads/product/product_image
/uploads/product/product_image/1
/uploads/product/product_image/2
/uploads/tmp
/uploads/tmp/1695626173-450992166375541-0001-0685
/uploads/tmp/1696404755-253954344917405-0001-1507
/uploads/tmp/1696404776-997569988427667-0002-5843
/uploads/tmp/1696404813-353664039788471-0003-9337
/uploads/worker

Found on 2025-08-26 18:03

Severity: low
Fingerprint: 5f32cf5d6962f09cc169dbbec169dbbe800eab3abfb83bf5b913d71a3cab78a1

Found 15 files trough .DS_Store spidering:

/assets
/uploads
/uploads/item_image
/uploads/item_image/image
/uploads/item_image/image/1
/uploads/item_image/image/2
/uploads/item_image/image/3
/uploads/item_image/image/4
/uploads/product
/uploads/tmp
/uploads/tmp/1695626173-450992166375541-0001-0685
/uploads/tmp/1696404755-253954344917405-0001-1507
/uploads/tmp/1696404776-997569988427667-0002-5843
/uploads/tmp/1696404813-353664039788471-0003-9337
/uploads/worker

Found on 2025-07-28 00:11

Severity: low
Fingerprint: 5f32cf5d6962f09cccdd54a0ccdd54a06e009db05a44441741423e48dd35569c

Found 13 files trough .DS_Store spidering:

/assets
/uploads
/uploads/item_image
/uploads/product
/uploads/product/product_image
/uploads/product/product_image/1
/uploads/product/product_image/2
/uploads/tmp
/uploads/tmp/1695626173-450992166375541-0001-0685
/uploads/tmp/1696404755-253954344917405-0001-1507
/uploads/tmp/1696404776-997569988427667-0002-5843
/uploads/tmp/1696404813-353664039788471-0003-9337
/uploads/worker

Found on 2025-07-28 00:11

Severity: low
Fingerprint: 5f32cf5d6962f09c39aac35b39aac35bf639e88d273b218a60bae82fd7cac186

Found 14 files trough .DS_Store spidering:

/assets
/uploads
/uploads/item_image
/uploads/item_image/image
/uploads/item_image/image/1
/uploads/item_image/image/2
/uploads/item_image/image/3
/uploads/item_image/image/4
/uploads/product
/uploads/product/product_image
/uploads/product/product_image/1
/uploads/product/product_image/2
/uploads/tmp
/uploads/worker

Found on 2025-07-03 02:17

Create report

GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: console-comcon-2026.virtualvenue3d.com
Port: 443
URL: https://console-comcon-2026.virtualvenue3d.com

First seen 2025-12-02 03:00
Last seen 2026-01-02 20:43
Open for 31 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa3
```
GraphQL introspection enabled at /graphql
```
  Found on 2026-01-02 20:43
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa328e1a256adc077862197dfb1d71fb931ba32c851
```
GraphQL introspection enabled at /graphql
Types: 70 (by kind: ENUM: 4, INPUT_OBJECT: 3, OBJECT: 55, SCALAR: 8)
Operations:
- Query: Query | fields: boothDetail, contestDetail, contestList, conversationDetail, currentUserDetail
- Mutation: Mutation | fields: addPageView, addReaction, authLogin, businessRequest, eventRegister
Directives: deprecated, include, skip (total: 3)
```
  Found on 2025-12-27 05:13
  
  114.6 kBytes
Create report
GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 99.83.220.108
Domain: www.signstudy.org
Port: 443
URL: https://www.signstudy.org

First seen 2025-11-20 00:22
Last seen 2026-01-02 20:20
Open for 43 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa3f13d327f54557e4db4c2db1803f041abddfd5cab
```
GraphQL introspection enabled at /graphql
Types: 40 (by kind: ENUM: 4, OBJECT: 32, SCALAR: 4)
Operations:
- Query: Query | fields: handshape, handshapes, sign, signDetails, signs
- Mutation: Mutation | fields: addSign, approveSodSign, removeSign, removeSodSign, requestSignUpdate
Directives: cacheControl, deprecated, include, skip (total: 4)
```
  Found on 2026-01-02 20:20
  
  46.5 kBytes
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa3
```
GraphQL introspection enabled at /graphql
```
  Found on 2025-11-21 15:54
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 75.2.60.68
Domain: hexo.land
Port: 80
URL: http://hexo.land

First seen 2025-12-03 05:13
Last seen 2026-01-02 20:18
Open for 30 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c7cf176427cf176423f3e94de326aceec326aceec326aceec
```
Found 2 files trough .DS_Store spidering:

/assets
/stl
```
  Found on 2026-01-02 20:18
Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 99.83.220.108
Domain: es.safejourneyhealth.com
Port: 443
URL: https://es.safejourneyhealth.com

First seen 2025-10-18 22:29
Last seen 2026-01-02 19:45
Open for 75 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de97573c13b

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : status=ok timestamp=2026-01-02T19:45:31Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=16

Found on 2026-01-02 19:45

71.7 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de93079f216

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=8 status=ok timestamp=2026-01-02T18:46:33Z languagesCount=189

Found on 2026-01-02 18:46

71.7 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de922a19143

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : responseTimeMs=12 status=ok timestamp=2025-12-27T06:21:02Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip]

Found on 2025-12-27 06:20

71.7 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de93162157c

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : responseTimeMs=7 status=ok timestamp=2025-12-27T03:53:47Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip]

Found on 2025-12-27 03:53

71.7 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de995f4795a

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=13 status=ok timestamp=2025-12-25T06:37:09Z

Found on 2025-12-25 06:37

72.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de91c6b5df1

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=69 status=ok timestamp=2025-12-23T09:07:41Z languagesCount=189

Found on 2025-12-23 09:07

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de957dc54bf

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : responseTimeMs=31 status=ok timestamp=2025-12-23T07:12:31Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip]

Found on 2025-12-23 07:12

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de935dc8bcd

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : responseTimeMs=5 status=ok timestamp=2025-12-21T11:15:52Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip]

Found on 2025-12-21 11:15

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de9e709a0d5

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=98 status=ok timestamp=2025-12-20T17:04:13Z

Found on 2025-12-20 17:04

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de936e63be7

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=22 status=ok timestamp=2025-12-19T07:31:02Z

Found on 2025-12-19 07:31

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de931b627ce

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : message=NoMethodError: undefined method `new' for module Google::Clou... status=error timestamp=2025-12-19T05:58:24Z

Found on 2025-12-19 05:58

71.1 kBytes 3 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa3
```
GraphQL introspection enabled at /graphql
```
Found on 2025-12-18 00:15

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de9cecfb36a

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : timestamp=2025-12-17T01:20:44Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=56 status=ok

Found on 2025-12-17 01:20

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de905f741ab

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=54 status=ok timestamp=2025-12-16T20:18:26Z

Found on 2025-12-16 20:18

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de9d2a9eacb

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=33 status=ok timestamp=2025-12-14T09:32:00Z

Found on 2025-12-14 09:31

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de9297f0dee

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : timestamp=2025-12-13T16:36:22Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=68 status=ok

Found on 2025-12-13 16:36

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de96faf8dab

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : responseTimeMs=61 status=ok timestamp=2025-12-13T05:13:05Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip]

Found on 2025-12-13 05:13

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de9084bd59d

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : timestamp=2025-12-01T19:15:13Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=59 status=ok

Found on 2025-12-01 19:14

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de97a65f94f

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : responseTimeMs=46 status=ok timestamp=2025-11-29T12:34:41Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip]

Found on 2025-11-29 12:34

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de97cb24876

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : timestamp=2025-11-29T12:01:29Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=41 status=ok

Found on 2025-11-29 12:01

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de99e68ddb4

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=40 status=ok timestamp=2025-11-27T12:23:44Z

Found on 2025-11-27 12:23

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de98a95700d

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=63 status=ok timestamp=2025-11-26T04:19:34Z

Found on 2025-11-26 04:19

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de9e91f49ed

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=37 status=ok timestamp=2025-11-23T15:31:41Z languagesCount=189

Found on 2025-11-23 15:31

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de976384190

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : responseTimeMs=297 status=ok timestamp=2025-11-23T05:47:15Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip]

Found on 2025-11-23 05:46

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de9741b6131

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=43 status=ok timestamp=2025-11-21T15:48:06Z

Found on 2025-11-21 15:48

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250cf2919753

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=41 status=ok timestamp=2025-11-11T00:31:44Z

Found on 2025-11-11 00:31

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250c9095ea36

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : timestamp=2025-11-10T22:34:17Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=46 status=ok

Found on 2025-11-10 22:34

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250c3550ff22

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=53 status=ok timestamp=2025-11-08T20:06:22Z

Found on 2025-11-08 20:06

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250c30689855

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=43 status=ok timestamp=2025-11-08T17:57:40Z languagesCount=189

Found on 2025-11-08 17:57

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250cad1b7f19

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=48 status=ok timestamp=2025-11-07T09:21:31Z

Found on 2025-11-07 09:21

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250cc0590296

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=49 status=ok timestamp=2025-11-07T02:02:48Z

Found on 2025-11-07 02:02

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250cb7ce308f

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : timestamp=2025-11-05T11:25:06Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=43 status=ok

Found on 2025-11-05 11:25

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250c6d9d18f1

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : status=ok timestamp=2025-11-05T07:12:20Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=33

Found on 2025-11-05 07:12

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250c385015fc

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=40 status=ok timestamp=2025-11-03T10:29:52Z

Found on 2025-11-03 10:29

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250caaf8f0da

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : timestamp=2025-11-02T12:50:42Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=40 status=ok

Found on 2025-11-02 12:50

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250c2ff316dc

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : timestamp=2025-11-02T11:24:28Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=152 status=ok

Found on 2025-11-02 11:24

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250c4fffb168

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=68 status=ok timestamp=2025-11-01T04:48:07Z

Found on 2025-11-01 04:48

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250c720e8f5c

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : status=ok timestamp=2025-10-29T05:23:53Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=156

Found on 2025-10-29 05:23

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250c8d9f3168

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : status=ok timestamp=2025-10-29T04:13:38Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=36

Found on 2025-10-29 04:13

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250cf8950de6

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : responseTimeMs=74 status=ok timestamp=2025-10-27T07:12:18Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip]

Found on 2025-10-27 07:11

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250c84c076d3

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=41 status=ok timestamp=2025-10-27T06:36:29Z

Found on 2025-10-27 06:36

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250c80e389e5

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=171 status=ok timestamp=2025-10-25T08:03:07Z languagesCount=189

Found on 2025-10-25 08:03

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250c1979e466

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : responseTimeMs=45 status=ok timestamp=2025-10-25T00:36:08Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip]

Found on 2025-10-25 00:36

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250c55bf5a68

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=64 status=ok timestamp=2025-10-23T10:16:33Z

Found on 2025-10-23 10:16

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250c5707db17

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : responseTimeMs=52 status=ok timestamp=2025-10-22T07:44:37Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip]

Found on 2025-10-22 07:44

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250c3bb0ae04

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : status=ok timestamp=2025-10-21T14:10:13Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=40

Found on 2025-10-21 14:10

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250c45faa676

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=55 status=ok timestamp=2025-10-20T23:06:51Z languagesCount=189

Found on 2025-10-20 23:06

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250c5f5e4f9b

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=54 status=ok timestamp=2025-10-18T22:29:56Z

Found on 2025-10-18 22:29

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250cabd3744d

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : responseTimeMs=52 status=ok timestamp=2025-10-18T22:29:43Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip]

Found on 2025-10-18 22:29

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250c766c7079

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=39 status=ok timestamp=2025-10-18T22:29:44Z

Found on 2025-10-18 22:29

63.8 kBytes 5 rows

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: api.alchemi.ai
Port: 443
URL: https://api.alchemi.ai

First seen 2025-10-27 00:40
Last seen 2026-01-02 19:19
Open for 67 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa35d5d12b43e0669383d64db8b24eb646de5a399b9

GraphQL introspection enabled at /graphql
Types: 83 (by kind: ENUM: 12, INPUT_OBJECT: 18, OBJECT: 48, SCALAR: 5)
Operations:
- Query: Query | fields: accountOverview, adminAllConnectAccount, adminAllUser, adminTasks, adminUserInfo
- Mutation: Mutation | fields: activateContentDistributionSanity, activateContentDistributionShopify, activateContentDistributionWebflow, activateContentDistributionWordpress, activateLink
Directives: deprecated, include, skip, specifiedBy (total: 4)

Found on 2026-01-02 19:19

128.2 kBytes

Create report

GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: dev-api.prescient-ai.io
Port: 80
URL: http://dev-api.prescient-ai.io

First seen 2025-11-07 00:16
Last seen 2026-01-02 19:18
Open for 56 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa35466a4370e7cb9a5a333c963d1a9bd8bd1a9bd8b
```
GraphQL introspection enabled at /graphql
Types: 23 (by kind: ENUM: 4, OBJECT: 13, SCALAR: 6)
Operations:
- Query: Query | fields: channelNames, modeledMetricTimeSeries, modeledMetrics, models
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)
```
  Found on 2026-01-02 19:18
  
  31.8 kBytes
Create report
GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: graph.shorton.ai
Port: 80
URL: http://graph.shorton.ai

First seen 2025-10-16 02:28
Last seen 2026-01-02 19:08
Open for 78 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa384d43882e6c1c31229bd4ea74f2777acafa618bc
```
GraphQL introspection enabled at /graphql
Types: 46 (by kind: ENUM: 11, OBJECT: 30, SCALAR: 5)
Operations:
- Query: Query | fields: loginAddOnUser, loginGoogleUser, retrieveGmailInbox, spaceById, tenantById
- Mutation: Mutation | fields: createProcess, createSpace, createTenant, deleteSpace, updateSpace
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)
```
  Found on 2026-01-02 19:08
  
  96.3 kBytes
Create report
GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: cms.encoreamc.com
Port: 80
URL: http://cms.encoreamc.com

First seen 2025-11-08 00:33
Last seen 2026-01-02 19:03
Open for 55 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db84e0e35084e0e35084e0e35084e0e35084e0e35084e0e350
```
GraphQL introspection enabled at /api
```
  Found on 2026-01-02 19:03
- Severity: medium
  Fingerprint: c2db3a1c40d490db84e0e3503d00510e9a43d9feaab2ab85674c9bd57305eb42
```
GraphQL introspection enabled at /api
Types: 105 (by kind: ENUM: 4, INPUT_OBJECT: 6, INTERFACE: 12, OBJECT: 61, SCALAR: 8, UNION: 14)
Operations:
- Query: Query | fields: entries, entry, entryCount, pagesEntries, ping
- Mutation: Mutation | fields: ping
Directives: deprecated, formatDateTime, include, markdown, money, parseRefs, skip, stripTags, transform, trim (total: 10)
```
  Found on 2025-11-29 19:18
  
  2.5 MBytes
Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: demo.api.homegrown.food
Port: 80
URL: http://demo.api.homegrown.food

First seen 2025-11-24 01:56
Last seen 2026-01-02 18:51
Open for 39 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa393b2af1c7c621c20abc9d5a1d3e50f1f6bd99c4a

GraphQL introspection enabled at /graphql
Types: 197 (by kind: ENUM: 10, INPUT_OBJECT: 80, OBJECT: 101, SCALAR: 6)
Operations:
- Query: Query | fields: currentUser, defaultCard, getPlacePredictions, shop, shops
- Mutation: Mutation | fields: contactForm, createShop, createUser, setLocation, updateUser
- Subscription: Subscription | fields: messageAdded, messagesRead
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2026-01-02 18:51

253.0 kBytes

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 13.248.244.96
Domain: bff.weschools.we.org
Port: 443
URL: https://bff.weschools.we.org

First seen 2025-11-10 01:32
Last seen 2026-01-02 18:50
Open for 53 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa39563946f31f9df3d5190f063c00b5265f6e85250

GraphQL introspection enabled at /graphql
Types: 78 (by kind: ENUM: 7, INPUT_OBJECT: 4, INTERFACE: 2, OBJECT: 60, SCALAR: 4, UNION: 1)
Operations:
- Query: Query | fields: _empty, filterPage, page, searchPage, settings
- Mutation: Mutation | fields: _empty, updateFormState, updateLocationDetails, updateRating
Directives: deprecated, include, skip (total: 3)

Readable stores: 2
settings (args: none) : ratingFormId=4214648 id=459f063d-a13b-435a-80ee-e6165a933562
ratingForm (args: none) : formHeader=Rate this resource formSubmitButtonText=SUBMIT formSubmittedHeader=Thanks for rating! formSubmittedBodyText=Your feedback is helpful to continuously improve our resources! formDismissButtonText=CLOSE id=3e176d87-0cc6-4198-81dc-11bbaa2080d5 formId=4214648

Found on 2026-01-02 18:50

209.6 kBytes 9 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa39563946f31f9df3d5190f063c00b5265c8c4510a

GraphQL introspection enabled at /graphql
Types: 78 (by kind: ENUM: 7, INPUT_OBJECT: 4, INTERFACE: 2, OBJECT: 60, SCALAR: 4, UNION: 1)
Operations:
- Query: Query | fields: _empty, filterPage, page, searchPage, settings
- Mutation: Mutation | fields: _empty, updateFormState, updateLocationDetails, updateRating
Directives: deprecated, include, skip (total: 3)

Readable stores: 2
settings (args: none) : id=459f063d-a13b-435a-80ee-e6165a933562 ratingFormId=4214648
ratingForm (args: none) : formId=4214648 formHeader=Rate this resource formSubmitButtonText=SUBMIT formSubmittedHeader=Thanks for rating! formSubmittedBodyText=Your feedback is helpful to continuously improve our resources! formDismissButtonText=CLOSE id=3e176d87-0cc6-4198-81dc-11bbaa2080d5

Found on 2025-12-26 11:11

209.6 kBytes 9 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa39563946f31f9df3d5190f063c00b5265801894ce

GraphQL introspection enabled at /graphql
Types: 78 (by kind: ENUM: 7, INPUT_OBJECT: 4, INTERFACE: 2, OBJECT: 60, SCALAR: 4, UNION: 1)
Operations:
- Query: Query | fields: _empty, filterPage, page, searchPage, settings
- Mutation: Mutation | fields: _empty, updateFormState, updateLocationDetails, updateRating
Directives: deprecated, include, skip (total: 3)

Readable stores: 2
settings (args: none) : id=459f063d-a13b-435a-80ee-e6165a933562 ratingFormId=4214648
ratingForm (args: none) : formDismissButtonText=CLOSE id=3e176d87-0cc6-4198-81dc-11bbaa2080d5 formId=4214648 formHeader=Rate this resource formSubmitButtonText=SUBMIT formSubmittedHeader=Thanks for rating! formSubmittedBodyText=Your feedback is helpful to continuously improve our resources!

Found on 2025-12-24 11:32

209.6 kBytes 9 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa39563946f31f9df3d5190f063c00b52659f717a72

GraphQL introspection enabled at /graphql
Types: 78 (by kind: ENUM: 7, INPUT_OBJECT: 4, INTERFACE: 2, OBJECT: 60, SCALAR: 4, UNION: 1)
Operations:
- Query: Query | fields: _empty, filterPage, page, searchPage, settings
- Mutation: Mutation | fields: _empty, updateFormState, updateLocationDetails, updateRating
Directives: deprecated, include, skip (total: 3)

Readable stores: 2
settings (args: none) : id=459f063d-a13b-435a-80ee-e6165a933562 ratingFormId=4214648
ratingForm (args: none) : formSubmittedBodyText=Your feedback is helpful to continuously improve our resources! formDismissButtonText=CLOSE id=3e176d87-0cc6-4198-81dc-11bbaa2080d5 formId=4214648 formHeader=Rate this resource formSubmitButtonText=SUBMIT formSubmittedHeader=Thanks for rating!

Found on 2025-12-22 15:04

209.6 kBytes 9 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa39563946f31f9df3d5190f063c00b526588d29d1e

GraphQL introspection enabled at /graphql
Types: 78 (by kind: ENUM: 7, INPUT_OBJECT: 4, INTERFACE: 2, OBJECT: 60, SCALAR: 4, UNION: 1)
Operations:
- Query: Query | fields: _empty, filterPage, page, searchPage, settings
- Mutation: Mutation | fields: _empty, updateFormState, updateLocationDetails, updateRating
Directives: deprecated, include, skip (total: 3)

Readable stores: 2
settings (args: none) : id=459f063d-a13b-435a-80ee-e6165a933562 ratingFormId=4214648
ratingForm (args: none) : id=3e176d87-0cc6-4198-81dc-11bbaa2080d5 formId=4214648 formHeader=Rate this resource formSubmitButtonText=SUBMIT formSubmittedHeader=Thanks for rating! formSubmittedBodyText=Your feedback is helpful to continuously improve our resources! formDismissButtonText=CLOSE

Found on 2025-12-20 19:11

209.6 kBytes 9 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa39563946f31f9df3d5190f063c00b52658d6d0e06

GraphQL introspection enabled at /graphql
Types: 78 (by kind: ENUM: 7, INPUT_OBJECT: 4, INTERFACE: 2, OBJECT: 60, SCALAR: 4, UNION: 1)
Operations:
- Query: Query | fields: _empty, filterPage, page, searchPage, settings
- Mutation: Mutation | fields: _empty, updateFormState, updateLocationDetails, updateRating
Directives: deprecated, include, skip (total: 3)

Readable stores: 2
settings (args: none) : id=459f063d-a13b-435a-80ee-e6165a933562 ratingFormId=4214648
ratingForm (args: none) : formSubmitButtonText=SUBMIT formSubmittedHeader=Thanks for rating! formSubmittedBodyText=Your feedback is helpful to continuously improve our resources! formDismissButtonText=CLOSE id=3e176d87-0cc6-4198-81dc-11bbaa2080d5 formId=4214648 formHeader=Rate this resource

Found on 2025-12-16 10:11

209.6 kBytes 9 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa39563946f31f9df3d5190f063c00b52653967b946

GraphQL introspection enabled at /graphql
Types: 78 (by kind: ENUM: 7, INPUT_OBJECT: 4, INTERFACE: 2, OBJECT: 60, SCALAR: 4, UNION: 1)
Operations:
- Query: Query | fields: _empty, filterPage, page, searchPage, settings
- Mutation: Mutation | fields: _empty, updateFormState, updateLocationDetails, updateRating
Directives: deprecated, include, skip (total: 3)

Readable stores: 2
settings (args: none) : id=459f063d-a13b-435a-80ee-e6165a933562 ratingFormId=4214648
ratingForm (args: none) : formSubmittedHeader=Thanks for rating! formSubmittedBodyText=Your feedback is helpful to continuously improve our resources! formDismissButtonText=CLOSE id=3e176d87-0cc6-4198-81dc-11bbaa2080d5 formId=4214648 formHeader=Rate this resource formSubmitButtonText=SUBMIT

Found on 2025-12-10 18:09

209.6 kBytes 9 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa39563946f31f9df3d5190f063c00b5265c0b9e720

GraphQL introspection enabled at /graphql
Types: 78 (by kind: ENUM: 7, INPUT_OBJECT: 4, INTERFACE: 2, OBJECT: 60, SCALAR: 4, UNION: 1)
Operations:
- Query: Query | fields: _empty, filterPage, page, searchPage, settings
- Mutation: Mutation | fields: _empty, updateFormState, updateLocationDetails, updateRating
Directives: deprecated, include, skip (total: 3)

Readable stores: 2
settings (args: none) : ratingFormId=4214648 id=459f063d-a13b-435a-80ee-e6165a933562
ratingForm (args: none) : id=3e176d87-0cc6-4198-81dc-11bbaa2080d5 formId=4214648 formHeader=Rate this resource formSubmitButtonText=SUBMIT formSubmittedHeader=Thanks for rating! formSubmittedBodyText=Your feedback is helpful to continuously improve our resources! formDismissButtonText=CLOSE

Found on 2025-11-29 13:07

209.6 kBytes 9 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa39563946f31f9df3d5190f063c00b52655861bbe0

GraphQL introspection enabled at /graphql
Types: 78 (by kind: ENUM: 7, INPUT_OBJECT: 4, INTERFACE: 2, OBJECT: 60, SCALAR: 4, UNION: 1)
Operations:
- Query: Query | fields: _empty, filterPage, page, searchPage, settings
- Mutation: Mutation | fields: _empty, updateFormState, updateLocationDetails, updateRating
Directives: deprecated, include, skip (total: 3)

Readable stores: 2
settings (args: none) : ratingFormId=4214648 id=459f063d-a13b-435a-80ee-e6165a933562
ratingForm (args: none) : formSubmittedHeader=Thanks for rating! formSubmittedBodyText=Your feedback is helpful to continuously improve our resources! formDismissButtonText=CLOSE id=3e176d87-0cc6-4198-81dc-11bbaa2080d5 formId=4214648 formHeader=Rate this resource formSubmitButtonText=SUBMIT

Found on 2025-11-25 01:02

209.6 kBytes 9 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa39563946f31f9df3d5190f063c00b5265b7f13a66

GraphQL introspection enabled at /graphql
Types: 78 (by kind: ENUM: 7, INPUT_OBJECT: 4, INTERFACE: 2, OBJECT: 60, SCALAR: 4, UNION: 1)
Operations:
- Query: Query | fields: _empty, filterPage, page, searchPage, settings
- Mutation: Mutation | fields: _empty, updateFormState, updateLocationDetails, updateRating
Directives: deprecated, include, skip (total: 3)

Readable stores: 2
settings (args: none) : id=459f063d-a13b-435a-80ee-e6165a933562 ratingFormId=4214648
ratingForm (args: none) : formHeader=Rate this resource formSubmitButtonText=SUBMIT formSubmittedHeader=Thanks for rating! formSubmittedBodyText=Your feedback is helpful to continuously improve our resources! formDismissButtonText=CLOSE id=3e176d87-0cc6-4198-81dc-11bbaa2080d5 formId=4214648

Found on 2025-11-25 01:02

209.6 kBytes 9 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa39563946f31f9df3d5190f063c00b5265d42a3d24

GraphQL introspection enabled at /graphql
Types: 78 (by kind: ENUM: 7, INPUT_OBJECT: 4, INTERFACE: 2, OBJECT: 60, SCALAR: 4, UNION: 1)
Operations:
- Query: Query | fields: _empty, filterPage, page, searchPage, settings
- Mutation: Mutation | fields: _empty, updateFormState, updateLocationDetails, updateRating
Directives: deprecated, include, skip (total: 3)

Readable stores: 2
settings (args: none) : ratingFormId=4214648 id=459f063d-a13b-435a-80ee-e6165a933562
ratingForm (args: none) : formSubmittedBodyText=Your feedback is helpful to continuously improve our resources! formDismissButtonText=CLOSE id=3e176d87-0cc6-4198-81dc-11bbaa2080d5 formId=4214648 formHeader=Rate this resource formSubmitButtonText=SUBMIT formSubmittedHeader=Thanks for rating!

Found on 2025-11-14 20:56

209.6 kBytes 9 rows

Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 75.2.60.68
Domain: api.staging.unum.la
Port: 80
URL: http://api.staging.unum.la

First seen 2025-11-18 00:58
Last seen 2026-01-02 18:23
Open for 45 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109
```
Public Swagger UI/API detected at path: /api-docs/swagger.json
```
  Found on 2026-01-02 18:23
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 75.2.60.68
Domain: hub.flxsystems.com
Port: 443
URL: https://hub.flxsystems.com

First seen 2025-05-01 13:27
Last seen 2026-01-02 18:23
Open for 246 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9db7f4c636b7f4c636b7f4c636b7f4c636
```
Found 1 files trough .DS_Store spidering:

/images
```
  Found on 2026-01-02 18:23
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 75.2.60.68
Domain: inv.shmarty.com
Port: 443
URL: https://inv.shmarty.com

First seen 2025-12-05 12:09
Last seen 2026-01-02 18:18
Open for 28 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c7cf176427cf17642568103b15e797d105e797d105e797d10
```
Found 2 files trough .DS_Store spidering:

/imgs
/imgs/mobile_default.png
```
  Found on 2026-01-02 18:18
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 75.2.60.68
Domain: www.myunitedshippinglines.com
Port: 443
URL: https://www.myunitedshippinglines.com

First seen 2023-03-24 03:44
Last seen 2026-01-02 17:58
Open for 1015 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c0215adfc0215adfc0363d38c48029d5840cd1f6ccdbae2cb
```
Found 4 files trough .DS_Store spidering:

/assets
/assets/dataTables
/assets/jquery-ui
/uploads
```
  Found on 2026-01-02 17:58
- Severity: low
  Fingerprint: 5f32cf5d6962f09c7cf176427cf176423f3e94dee53e19e1e53e19e1e53e19e1
```
Found 2 files trough .DS_Store spidering:

/assets
/uploads
```
  Found on 2025-09-21 05:18
Create report
GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: backyard.paradise-nature.wine
Port: 80
URL: http://backyard.paradise-nature.wine

First seen 2025-11-24 03:06
Last seen 2026-01-02 17:51
Open for 39 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa346294c995e242dfbcfb9a76923a9a8ae0db9216a
```
GraphQL introspection enabled at /graphql
Types: 128 (by kind: ENUM: 2, INPUT_OBJECT: 59, OBJECT: 59, SCALAR: 8)
Operations:
- Query: Query | fields: assignmentCandidates, banners, categories, closestDeliveryDateForGoods, customer
- Mutation: Mutation | fields: accountDelete, activateCustomer, addBottleToOrder, addWaiting, applyCoupon
Directives: deprecated, include, skip (total: 3)

Readable stores: 0
```
  Found on 2026-01-02 17:51
  
  185.2 kBytes
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 75.2.60.68
Domain: server.socket.fi
Port: 80
URL: http://server.socket.fi

First seen 2025-10-26 00:06
Last seen 2026-01-02 17:50
Open for 68 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109
```
Public Swagger UI/API detected at path: /api-docs/swagger.json
```
  Found on 2026-01-02 17:50
Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 75.2.60.68
Domain: www.preprod.boundless.life
Port: 443
URL: https://www.preprod.boundless.life

First seen 2025-10-01 20:46
Last seen 2026-01-02 17:50
Open for 92 days

Severity: medium
Fingerprint: 5f32cf5d6962f09cb3107650b3107650b1056339cc4bd4f171e04ee9cf4c9c13

Found 39 files trough .DS_Store spidering:

/404.gif
/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/avatars
/BoundlessHosts-type2.svg
/BoundlessHosts-type3.svg
/casa_azul
/circle.png
/coc.pdf
/dashboard
/dashboard/css
/dashboard/css/plugins
/dashboard/css/vendors
/dashboard/css/vendors/bootstrap-sass
/dashboard/fonts
/dashboard/imgs
/dashboard/imgs/almost_there.png
/dashboard/imgs/community_access.jpg
/dashboard/imgs/img.png
/dashboard/imgs/page
/dashboard/imgs/page/dashboard
/dashboard/imgs/slider
/dashboard/imgs/template
/dashboard/js
/empty-2.png
/family-welcome.png
/Family_6.jpg
/favicon.ico
/onboarding-1.png
/onboarding-2.png
/onboarding-3.png
/onboarding-registration.jpeg
/party.png
/referral-agreement.pdf
/robots.txt
/Working_1.png

Found on 2026-01-02 17:50

Severity: medium
Fingerprint: 5f32cf5d6962f09c8f03d7bd8f03d7bd18b54d047ac2f1ae5b63f538d274b1eb

Found 38 files trough .DS_Store spidering:

/404.gif
/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/avatars
/BoundlessHosts-type2.svg
/BoundlessHosts-type3.svg
/casa_azul
/circle.png
/coc.pdf
/dashboard
/dashboard/css
/dashboard/css/plugins
/dashboard/css/vendors
/dashboard/css/vendors/bootstrap-sass
/dashboard/fonts
/dashboard/imgs
/dashboard/imgs/almost_there.png
/dashboard/imgs/community_access.jpg
/dashboard/imgs/img.png
/dashboard/imgs/page
/dashboard/imgs/slider
/dashboard/imgs/template
/dashboard/js
/empty-2.png
/family-welcome.png
/Family_6.jpg
/favicon.ico
/onboarding-1.png
/onboarding-2.png
/onboarding-3.png
/onboarding-registration.jpeg
/party.png
/referral-agreement.pdf
/robots.txt
/Working_1.png

Found on 2025-12-01 19:20

Severity: low
Fingerprint: 5f32cf5d6962f09c81c345f781c345f7cb18f7eed688a27cdb7f63ca3f32fe56

Found 32 files trough .DS_Store spidering:

/404.gif
/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/avatars
/BoundlessHosts-type2.svg
/BoundlessHosts-type3.svg
/casa_azul
/circle.png
/coc.pdf
/dashboard
/dashboard/css
/dashboard/css/plugins
/dashboard/css/vendors
/dashboard/css/vendors/bootstrap-sass
/dashboard/fonts
/dashboard/imgs
/dashboard/js
/empty-2.png
/family-welcome.png
/Family_6.jpg
/favicon.ico
/onboarding-1.png
/onboarding-2.png
/onboarding-3.png
/onboarding-registration.jpeg
/party.png
/referral-agreement.pdf
/robots.txt
/Working_1.png

Found on 2025-12-01 00:18

Severity: medium
Fingerprint: 5f32cf5d6962f09c8f03d7bd8f03d7bd18b54d047ac2f1ae5b63f538f5cf9851

Found 38 files trough .DS_Store spidering:

/404.gif
/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/avatars
/BoundlessHosts-type2.svg
/BoundlessHosts-type3.svg
/casa_azul
/circle.png
/coc.pdf
/dashboard
/dashboard/css
/dashboard/css/plugins
/dashboard/css/vendors
/dashboard/fonts
/dashboard/imgs
/dashboard/imgs/almost_there.png
/dashboard/imgs/community_access.jpg
/dashboard/imgs/img.png
/dashboard/imgs/page
/dashboard/imgs/page/dashboard
/dashboard/imgs/slider
/dashboard/imgs/template
/dashboard/js
/empty-2.png
/family-welcome.png
/Family_6.jpg
/favicon.ico
/onboarding-1.png
/onboarding-2.png
/onboarding-3.png
/onboarding-registration.jpeg
/party.png
/referral-agreement.pdf
/robots.txt
/Working_1.png

Found on 2025-10-01 20:46

Severity: medium
Fingerprint: 5f32cf5d6962f09c8efce1938efce19318c11f3a54092988c3fd157ee36cc808

Found 36 files trough .DS_Store spidering:

/404.gif
/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/avatars
/BoundlessHosts-type2.svg
/BoundlessHosts-type3.svg
/casa_azul
/circle.png
/coc.pdf
/dashboard
/dashboard/css
/dashboard/fonts
/dashboard/imgs
/dashboard/imgs/almost_there.png
/dashboard/imgs/community_access.jpg
/dashboard/imgs/img.png
/dashboard/imgs/page
/dashboard/imgs/page/dashboard
/dashboard/imgs/slider
/dashboard/imgs/template
/dashboard/js
/empty-2.png
/family-welcome.png
/Family_6.jpg
/favicon.ico
/onboarding-1.png
/onboarding-2.png
/onboarding-3.png
/onboarding-registration.jpeg
/party.png
/referral-agreement.pdf
/robots.txt
/Working_1.png

Found on 2025-10-01 20:46

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 75.2.60.68
Domain: www.carynstegia.com
Port: 443
URL: https://www.carynstegia.com

First seen 2024-12-26 08:18
Last seen 2026-01-02 17:25
Open for 372 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c3af247253af24725fe8d2cd42f5a5b44e99e6caa1c0e95b0
```
Found 9 files trough .DS_Store spidering:

/502.html
/apple-touch-icon.png
/browserconfig.xml
/favicon-16x16.png
/favicon-32x32.png
/maintenance.html
/robots.txt
/safari-pinned-tab.svg
/site.webmanifest
```
  Found on 2026-01-02 17:25
- Severity: low
  Fingerprint: 5f32cf5d6962f09cccdd54a0ccdd54a0e3811b97e7f5f2328f98cfbdd250268a
```
Found 13 files trough .DS_Store spidering:

/502.html
/android-chrome-192x192.png
/android-chrome-512x512.png
/apple-touch-icon.png
/browserconfig.xml
/favicon-16x16.png
/favicon-32x32.png
/favicon.ico
/maintenance.html
/mstile-150x150.png
/robots.txt
/safari-pinned-tab.svg
/site.webmanifest
```
  Found on 2025-09-17 03:20
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 75.2.60.68
Domain: www.carynstegia.com
Port: 80
URL: http://www.carynstegia.com

First seen 2024-12-26 08:18
Last seen 2026-01-02 17:25
Open for 372 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c3af247253af24725fe8d2cd42f5a5b44e99e6caa1c0e95b0
```
Found 9 files trough .DS_Store spidering:

/502.html
/apple-touch-icon.png
/browserconfig.xml
/favicon-16x16.png
/favicon-32x32.png
/maintenance.html
/robots.txt
/safari-pinned-tab.svg
/site.webmanifest
```
  Found on 2026-01-02 17:25
- Severity: low
  Fingerprint: 5f32cf5d6962f09cccdd54a0ccdd54a0e3811b97e7f5f2328f98cfbdd250268a
```
Found 13 files trough .DS_Store spidering:

/502.html
/android-chrome-192x192.png
/android-chrome-512x512.png
/apple-touch-icon.png
/browserconfig.xml
/favicon-16x16.png
/favicon-32x32.png
/favicon.ico
/maintenance.html
/mstile-150x150.png
/robots.txt
/safari-pinned-tab.svg
/site.webmanifest
```
  Found on 2025-09-17 05:45
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 75.2.60.68
Domain: kiddievids.com
Port: 443
URL: https://kiddievids.com

First seen 2025-05-20 01:49
Last seen 2026-01-02 17:23
Open for 227 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c026392ab026392ab7d7487bdbed0e3f3cadd03c567108636
```
Found 7 files trough .DS_Store spidering:

/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/favicon.ico
/placeholder
/placeholder/vid-1.png
/robots.txt
```
  Found on 2026-01-02 17:23
Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 35.71.179.82
Domain: www.itateam.com.tw
Port: 80
URL: http://www.itateam.com.tw

First seen 2025-11-19 01:43
Last seen 2026-01-02 17:15
Open for 44 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3f516dfd994cb55bb21a21274ba4c18cbb879074c

GraphQL introspection enabled at /graphql
Types: 42 (by kind: ENUM: 3, INPUT_OBJECT: 9, INTERFACE: 1, OBJECT: 25, SCALAR: 4)
Operations:
- Query: Query | fields: newsArticles, node, projects, user
- Mutation: Mutation | fields: addNewsArticle, addProject, modifyNewsArticle, modifyProject, removeProject
Directives: deprecated, include, skip (total: 3)

Readable stores: 1
user (args: none) : id=VXNlcjpub3QgbG9naW4gdXNlcg== username= password=

Found on 2026-01-02 17:15

41.4 kBytes 3 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3f516dfd994cb55bb21a21274ba4c18cb377db778

GraphQL introspection enabled at /graphql
Types: 42 (by kind: ENUM: 3, INPUT_OBJECT: 9, INTERFACE: 1, OBJECT: 25, SCALAR: 4)
Operations:
- Query: Query | fields: newsArticles, node, projects, user
- Mutation: Mutation | fields: addNewsArticle, addProject, modifyNewsArticle, modifyProject, removeProject
Directives: deprecated, include, skip (total: 3)

Readable stores: 1
user (args: none) : username= password= id=VXNlcjpub3QgbG9naW4gdXNlcg==

Found on 2025-12-24 23:21

41.4 kBytes 3 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3f516dfd994cb55bb21a21274ba4c18cb9b0ca7cc

GraphQL introspection enabled at /graphql
Types: 42 (by kind: ENUM: 3, INPUT_OBJECT: 9, INTERFACE: 1, OBJECT: 25, SCALAR: 4)
Operations:
- Query: Query | fields: newsArticles, node, projects, user
- Mutation: Mutation | fields: addNewsArticle, addProject, modifyNewsArticle, modifyProject, removeProject
Directives: deprecated, include, skip (total: 3)

Readable stores: 1
user (args: none) : password= id=VXNlcjpub3QgbG9naW4gdXNlcg== username=

Found on 2025-12-20 14:51

41.4 kBytes 3 rows

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 75.2.60.68
Domain: www.herokumobile.com
Port: 80
URL: http://www.herokumobile.com

First seen 2025-04-27 14:11
Last seen 2026-01-02 16:51
Open for 250 days

Severity: medium
Fingerprint: 5f32cf5d6962f09c8051bd0c8051bd0cb26baf2c35cf0aaf3c1f22d02cdfecc1

Found 66 files trough .DS_Store spidering:

/css
/fonts
/fonts/poppins
/fonts/revicons
/images
/images/0530-vcard.svg
/images/about.png
/images/accordion-image.png
/images/accordion-minus.png
/images/accordion-minus@2x.png
/images/accordion-plus.png
/images/accordion-plus@2x.png
/images/blog-images
/images/cloud.png
/images/controls.png
/images/design-icon.png
/images/download-bg.png
/images/feature-mobile.png
/images/feature0.png
/images/feature1.png
/images/feature2.png
/images/feature3.png
/images/features-bg.png
/images/features-mobile.png
/images/header-slide-1.png
/images/header-slide-2.png
/images/header-slide-3.png
/images/header-slide-4.png
/images/heading-before-white.png
/images/heading-before.png
/images/heading-before@2x.png
/images/HKMobileBilling.png
/images/how-it-works-device.png
/images/how-it-works-screen2.png
/images/InitialSignup.png
/images/left-image1.png
/images/loader-blue.gif
/images/loader-purple.gif
/images/logo.png
/images/logo@2x.png
/images/Logo_Variation1.png
/images/Logo_Variation2.png
/images/Logo_Variation3.png
/images/Logo_Variation4.png
/images/map.png
/images/more-features-bg.png
/images/perfomance-icon.png
/images/quick-view-1.png
/images/quick-view-2.png
/images/quick-view-3.png
/images/quick-view-4.png
/images/right-image1.png
/images/slidelogo.png
/images/star.png
/images/statistic-bg.jpg
/images/statistic.png
/images/store-google-icon.png
/images/store-google-icon@2x.png
/images/tabicon.png
/images/team-1.png
/images/team-2.png
/images/team-3.png
/images/testimonial-user.png
/images/testimonial-user2.png
/images/thumbsup.png
/images/users.png

Found on 2026-01-02 16:51

Severity: low
Fingerprint: 5f32cf5d6962f09c1a5d9b0f1a5d9b0fd02d66878235b1acb988a095b988a095
```
Found 3 files trough .DS_Store spidering:

/css
/fonts
/images
```
Found on 2025-10-29 04:10

Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 75.2.60.68
Domain: server.socket.fi
Port: 443
URL: https://server.socket.fi

First seen 2025-10-26 00:06
Last seen 2026-01-02 16:50
Open for 68 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109
```
Public Swagger UI/API detected at path: /api-docs/swagger.json
```
  Found on 2026-01-02 16:50
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 75.2.60.68
Domain: www.tokyochase.com
Port: 443
URL: https://www.tokyochase.com

First seen 2025-05-15 02:34
Last seen 2026-01-02 16:49
Open for 232 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9d88a1858c88a1858c88a1858c88a1858c
```
Found 1 files trough .DS_Store spidering:

/sitemap.xml
```
  Found on 2026-01-02 16:49
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9d8ef0d5608ef0d5608ef0d5608ef0d560
```
Found 1 files trough .DS_Store spidering:

/favicon
```
  Found on 2025-07-12 17:16
Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: laoyh8.workingassumption.org
Port: 80
URL: http://laoyh8.workingassumption.org

First seen 2025-10-19 00:19
Last seen 2026-01-02 16:15
Open for 75 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa306dc9ec8b7b4d76cbab8645c1a63cb45ca09a4c5

GraphQL introspection enabled at /graphql
Types: 75 (by kind: ENUM: 2, OBJECT: 64, SCALAR: 8, UNION: 1)
Operations:
- Query: Query | fields: adminCount, admins, assessmentDatesApprovalPending, assessmentDatesApprovalPendingCount, awardedPhotos
- Mutation: Mutation | fields: addAsset, addAssetIdToMr, addAssetIdToUa, addCaptionAssetIdToProject, addCohortNotes
Directives: deprecated, include, skip (total: 3)

Found on 2026-01-02 16:15

246.0 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa30f9ca776d7c6be669b1ac4625c625bdf842248ff

GraphQL introspection enabled at /graphql
Types: 74 (by kind: ENUM: 2, OBJECT: 63, SCALAR: 8, UNION: 1)
Operations:
- Query: Query | fields: adminCount, admins, assessmentDatesApprovalPending, assessmentDatesApprovalPendingCount, awardedPhotos
- Mutation: Mutation | fields: addAsset, addAssetIdToMr, addAssetIdToUa, addCaptionAssetIdToProject, addCohortNotes
Directives: deprecated, include, skip (total: 3)

Found on 2025-11-30 11:32

242.3 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa3
```
GraphQL introspection enabled at /graphql
```
Found on 2025-11-01 16:33

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa398f15d30018930b442c7e4c45b26412d005c1f3d

GraphQL introspection enabled at /graphql
Types: 73 (by kind: ENUM: 2, OBJECT: 62, SCALAR: 8, UNION: 1)
Operations:
- Query: Query | fields: adminCount, admins, assessmentDatesApprovalPending, assessmentDatesApprovalPendingCount, awardedPhotos
- Mutation: Mutation | fields: addAsset, addAssetIdToMr, addAssetIdToUa, addCaptionAssetIdToProject, addCohortNotes
Directives: deprecated, include, skip (total: 3)

Found on 2025-10-23 11:30

239.6 kBytes

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 75.2.60.68
Domain: www.efutebol.com.br
Port: 80
URL: http://www.efutebol.com.br

First seen 2025-06-25 04:19
Last seen 2026-01-02 16:09
Open for 191 days

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b70033d2391fa2f13c7762c9430d528045

Found 128 files trough .DS_Store spidering:

/assets
/clubes
/clubes/ajax.png
/clubes/al-ahly.png
/clubes/al-ain.png
/clubes/al-hilal.png
/clubes/al-nassr.png
/clubes/america-mineiro.png
/clubes/anderlecht.png
/clubes/arsenal.png
/clubes/aston-villa.png
/clubes/atalanta.png
/clubes/athletic-bilbao.png
/clubes/athletico-paranaense.png
/clubes/atletico-de-madrid.png
/clubes/atletico-goianiense.png
/clubes/atletico-mineiro.png
/clubes/atletico-nacional.png
/clubes/auckland-city.png
/clubes/avai.png
/clubes/bahia.png
/clubes/barcelona.png
/clubes/basel.png
/clubes/bayer-leverkusen.png
/clubes/bayern-de-munique.png
/clubes/benfica.png
/clubes/besiktas.png
/clubes/boca-juniors.png
/clubes/borussia-dortmund.png
/clubes/botafogo.png
/clubes/braga.png
/clubes/bragantino.png
/clubes/ceara.png
/clubes/celtic.png
/clubes/cerro-porteno.png
/clubes/chapecoense.png
/clubes/chelsea.png
/clubes/chivas-guadalajara.png
/clubes/club-america.png
/clubes/club-brugge.png
/clubes/club-nacional.png
/clubes/colo-colo.png
/clubes/copenhagen.png
/clubes/corinthians.png
/clubes/coritiba.png
/clubes/cruz-azul.png
/clubes/cruzeiro.png
/clubes/cska-moscou.png
/clubes/cuiaba.png
/clubes/dinamo-de-kiev.png
/clubes/dinamo-zagreb.png
/clubes/eintracht-frankfurt.png
/clubes/esperance.png
/clubes/estrela-vermelha.png
/clubes/estudiantes.png
/clubes/everton.png
/clubes/fenerbahce.png
/clubes/ferencvaros.png
/clubes/feyenoord.png
/clubes/fiorentina.png
/clubes/flamengo.png
/clubes/fluminense.png
/clubes/fortaleza.png
/clubes/galatasaray.png
/clubes/goias.png
/clubes/gremio.png
/clubes/guangzhou-evergrande.png
/clubes/independiente-del-valle.png
/clubes/independiente.png
/clubes/inter-de-milao.png
/clubes/inter-miami.png
/clubes/internacional.png
/clubes/jeonbuk-motors.png
/clubes/junior-barranquilla.png
/clubes/juventude.png
/clubes/juventus.png
/clubes/kashima-antlers.png
/clubes/lazio.png
/clubes/ldu.png
/clubes/leeds-united.png
/clubes/legia-warszawa.png
/clubes/leon.png
/clubes/lille.png
/clubes/liverpool.png
/clubes/los-angeles-galaxy.png
/clubes/losc-lille.png
/clubes/lyon.png
/clubes/maccabi-tel-aviv.png
/clubes/malmo-ff.png
/clubes/mamelodi-sundowns.png
/clubes/manchester-city.png
/clubes/manchester-united.png
/clubes/mazembe.png
/clubes/milan.png
/clubes/monaco.png
/clubes/monterrey.png
/clubes/nantes.png
/clubes/napoli.png
/clubes/newcastle.png
/clubes/olimpia.png
/clubes/olympiacos.png
/clubes/olympique-de-marselha.png
/clubes/pachuca.png
/clubes/palmeiras.png
/clubes/panathinaikos.png
/clubes/penarol.png
/clubes/porto.png
/clubes/psg.png
/clubes/psv.png
/clubes/racing.png
/clubes/rangers.png
/clubes/rapid-viena.png
/clubes/rb-leipzig.png
/clubes/rb-salzburg.png
/clubes/real-betis.png
/clubes/real-madrid.png
/clubes/real-sociedad.png
/clubes/river-plate.png
/clubes/roma.png
/clubes/rosenborg.png
/clubes/saint-etienne.png
/clubes/san-lorenzo.png
/clubes/santos.png
/clubes/sao-paulo.png
/clubes/seattle-sounders.png
/clubes/sevilla.png
/clubes/shakhtar-donetsk.png
/clubes/slavia-praga.png

Found on 2026-01-02 16:09

Severity: low
Fingerprint: 5f32cf5d6962f09c3c1fc5e93c1fc5e975a091b77348adfe3a675e91916f7610
```
Found 5 files trough .DS_Store spidering:

/assets
/clubes
/clubes/unknown.png
/paises
/paises/originals
```
Found on 2025-06-25 04:19

Create report

GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: production-api.virtualvenue3d.com
Port: 443
URL: https://production-api.virtualvenue3d.com

First seen 2025-12-06 15:50
Last seen 2026-01-02 16:05
Open for 27 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa328e1a256adc077862197dfb1d71fb931ba32c851
```
GraphQL introspection enabled at /graphql
Types: 70 (by kind: ENUM: 4, INPUT_OBJECT: 3, OBJECT: 55, SCALAR: 8)
Operations:
- Query: Query | fields: boothDetail, contestDetail, contestList, conversationDetail, currentUserDetail
- Mutation: Mutation | fields: addPageView, addReaction, authLogin, businessRequest, eventRegister
Directives: deprecated, include, skip (total: 3)
```
  Found on 2026-01-02 16:05
  
  114.6 kBytes
Create report
GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: demo-api.hemlane.com
Port: 443
URL: https://demo-api.hemlane.com

First seen 2025-12-08 00:39
Last seen 2026-01-02 15:39
Open for 25 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa3
```
GraphQL introspection enabled at /graphql
```
  Found on 2026-01-02 15:39
Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: staging.api.useaccrue.com
Port: 80
URL: http://staging.api.useaccrue.com

First seen 2025-12-01 00:28
Last seen 2026-01-02 15:34
Open for 32 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa33fd81b43e4c606c19347eabb29965825d4e4d3f1

GraphQL introspection enabled at /graphql
Types: 322 (by kind: ENUM: 72, INPUT_OBJECT: 1, INTERFACE: 1, OBJECT: 230, SCALAR: 9, UNION: 9)
Operations:
- Query: Query | fields: accountHistory, agentPaymentMethods, agentReviewStatistics, agents, appVersionDetail
- Mutation: Mutation | fields: addBankAccount, addCard, addFcmToken, addMarketingLead, addMoneyToFixedSaving
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2026-01-02 15:34

596.0 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa3
```
GraphQL introspection enabled at /graphql
```
Found on 2025-12-23 01:24

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3764dc0853a5cd5471023ba89d8edd664f23897c4

GraphQL introspection enabled at /graphql
Types: 319 (by kind: ENUM: 71, INPUT_OBJECT: 1, INTERFACE: 1, OBJECT: 228, SCALAR: 9, UNION: 9)
Operations:
- Query: Query | fields: accountHistory, agentPaymentMethods, agentReviewStatistics, agents, appVersionDetail
- Mutation: Mutation | fields: addBankAccount, addCard, addFcmToken, addMoneyToFixedSaving, addMoneyToSavingsChallenge
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2025-12-09 10:10

590.3 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3b7a89925fc96672703d7f82940422ac4be7460e4

GraphQL introspection enabled at /graphql
Types: 318 (by kind: ENUM: 71, INPUT_OBJECT: 1, INTERFACE: 1, OBJECT: 227, SCALAR: 9, UNION: 9)
Operations:
- Query: Query | fields: accountHistory, agentPaymentMethods, agentReviewStatistics, agents, appVersionDetail
- Mutation: Mutation | fields: addBankAccount, addCard, addFcmToken, addMoneyToFixedSaving, addMoneyToSavingsChallenge
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2025-12-01 00:28

588.1 kBytes

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 75.2.60.68
Domain: webtestpilot.carynstegia.com
Port: 80
URL: http://webtestpilot.carynstegia.com

First seen 2024-12-26 08:53
Last seen 2026-01-02 15:12
Open for 372 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c3af247253af24725fe8d2cd42f5a5b44e99e6caa1c0e95b0
```
Found 9 files trough .DS_Store spidering:

/502.html
/apple-touch-icon.png
/browserconfig.xml
/favicon-16x16.png
/favicon-32x32.png
/maintenance.html
/robots.txt
/safari-pinned-tab.svg
/site.webmanifest
```
  Found on 2026-01-02 15:12
- Severity: low
  Fingerprint: 5f32cf5d6962f09cccdd54a0ccdd54a0e3811b97e7f5f2328f98cfbdd250268a
```
Found 13 files trough .DS_Store spidering:

/502.html
/android-chrome-192x192.png
/android-chrome-512x512.png
/apple-touch-icon.png
/browserconfig.xml
/favicon-16x16.png
/favicon-32x32.png
/favicon.ico
/maintenance.html
/mstile-150x150.png
/robots.txt
/safari-pinned-tab.svg
/site.webmanifest
```
  Found on 2025-09-13 15:51
Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 99.83.220.108
Domain: stg-bff.weschools.we.org
Port: 80
URL: http://stg-bff.weschools.we.org

First seen 2025-11-18 01:29
Last seen 2026-01-02 15:12
Open for 45 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa39563946f31f9df3d5190f063c00b5265b7f13a66

GraphQL introspection enabled at /graphql
Types: 78 (by kind: ENUM: 7, INPUT_OBJECT: 4, INTERFACE: 2, OBJECT: 60, SCALAR: 4, UNION: 1)
Operations:
- Query: Query | fields: _empty, filterPage, page, searchPage, settings
- Mutation: Mutation | fields: _empty, updateFormState, updateLocationDetails, updateRating
Directives: deprecated, include, skip (total: 3)

Readable stores: 2
settings (args: none) : id=459f063d-a13b-435a-80ee-e6165a933562 ratingFormId=4214648
ratingForm (args: none) : formHeader=Rate this resource formSubmitButtonText=SUBMIT formSubmittedHeader=Thanks for rating! formSubmittedBodyText=Your feedback is helpful to continuously improve our resources! formDismissButtonText=CLOSE id=3e176d87-0cc6-4198-81dc-11bbaa2080d5 formId=4214648

Found on 2026-01-02 15:12

209.6 kBytes 9 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa39563946f31f9df3d5190f063c00b5265c0b9e720

GraphQL introspection enabled at /graphql
Types: 78 (by kind: ENUM: 7, INPUT_OBJECT: 4, INTERFACE: 2, OBJECT: 60, SCALAR: 4, UNION: 1)
Operations:
- Query: Query | fields: _empty, filterPage, page, searchPage, settings
- Mutation: Mutation | fields: _empty, updateFormState, updateLocationDetails, updateRating
Directives: deprecated, include, skip (total: 3)

Readable stores: 2
settings (args: none) : ratingFormId=4214648 id=459f063d-a13b-435a-80ee-e6165a933562
ratingForm (args: none) : id=3e176d87-0cc6-4198-81dc-11bbaa2080d5 formId=4214648 formHeader=Rate this resource formSubmitButtonText=SUBMIT formSubmittedHeader=Thanks for rating! formSubmittedBodyText=Your feedback is helpful to continuously improve our resources! formDismissButtonText=CLOSE

Found on 2025-12-26 23:19

209.6 kBytes 9 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa39563946f31f9df3d5190f063c00b526570c77b38

GraphQL introspection enabled at /graphql
Types: 78 (by kind: ENUM: 7, INPUT_OBJECT: 4, INTERFACE: 2, OBJECT: 60, SCALAR: 4, UNION: 1)
Operations:
- Query: Query | fields: _empty, filterPage, page, searchPage, settings
- Mutation: Mutation | fields: _empty, updateFormState, updateLocationDetails, updateRating
Directives: deprecated, include, skip (total: 3)

Readable stores: 2
settings (args: none) : ratingFormId=4214648 id=459f063d-a13b-435a-80ee-e6165a933562
ratingForm (args: none) : formDismissButtonText=CLOSE id=3e176d87-0cc6-4198-81dc-11bbaa2080d5 formId=4214648 formHeader=Rate this resource formSubmitButtonText=SUBMIT formSubmittedHeader=Thanks for rating! formSubmittedBodyText=Your feedback is helpful to continuously improve our resources!

Found on 2025-12-24 18:28

209.6 kBytes 9 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa39563946f31f9df3d5190f063c00b52659f717a72

GraphQL introspection enabled at /graphql
Types: 78 (by kind: ENUM: 7, INPUT_OBJECT: 4, INTERFACE: 2, OBJECT: 60, SCALAR: 4, UNION: 1)
Operations:
- Query: Query | fields: _empty, filterPage, page, searchPage, settings
- Mutation: Mutation | fields: _empty, updateFormState, updateLocationDetails, updateRating
Directives: deprecated, include, skip (total: 3)

Readable stores: 2
settings (args: none) : id=459f063d-a13b-435a-80ee-e6165a933562 ratingFormId=4214648
ratingForm (args: none) : formSubmittedBodyText=Your feedback is helpful to continuously improve our resources! formDismissButtonText=CLOSE id=3e176d87-0cc6-4198-81dc-11bbaa2080d5 formId=4214648 formHeader=Rate this resource formSubmitButtonText=SUBMIT formSubmittedHeader=Thanks for rating!

Found on 2025-12-22 21:20

209.6 kBytes 9 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa39563946f31f9df3d5190f063c00b5265c8c4510a

GraphQL introspection enabled at /graphql
Types: 78 (by kind: ENUM: 7, INPUT_OBJECT: 4, INTERFACE: 2, OBJECT: 60, SCALAR: 4, UNION: 1)
Operations:
- Query: Query | fields: _empty, filterPage, page, searchPage, settings
- Mutation: Mutation | fields: _empty, updateFormState, updateLocationDetails, updateRating
Directives: deprecated, include, skip (total: 3)

Readable stores: 2
settings (args: none) : id=459f063d-a13b-435a-80ee-e6165a933562 ratingFormId=4214648
ratingForm (args: none) : formId=4214648 formHeader=Rate this resource formSubmitButtonText=SUBMIT formSubmittedHeader=Thanks for rating! formSubmittedBodyText=Your feedback is helpful to continuously improve our resources! formDismissButtonText=CLOSE id=3e176d87-0cc6-4198-81dc-11bbaa2080d5

Found on 2025-12-20 21:36

209.6 kBytes 9 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa39563946f31f9df3d5190f063c00b526588d29d1e

GraphQL introspection enabled at /graphql
Types: 78 (by kind: ENUM: 7, INPUT_OBJECT: 4, INTERFACE: 2, OBJECT: 60, SCALAR: 4, UNION: 1)
Operations:
- Query: Query | fields: _empty, filterPage, page, searchPage, settings
- Mutation: Mutation | fields: _empty, updateFormState, updateLocationDetails, updateRating
Directives: deprecated, include, skip (total: 3)

Readable stores: 2
settings (args: none) : id=459f063d-a13b-435a-80ee-e6165a933562 ratingFormId=4214648
ratingForm (args: none) : id=3e176d87-0cc6-4198-81dc-11bbaa2080d5 formId=4214648 formHeader=Rate this resource formSubmitButtonText=SUBMIT formSubmittedHeader=Thanks for rating! formSubmittedBodyText=Your feedback is helpful to continuously improve our resources! formDismissButtonText=CLOSE

Found on 2025-12-18 18:16

209.6 kBytes 9 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa39563946f31f9df3d5190f063c00b52653967b946

GraphQL introspection enabled at /graphql
Types: 78 (by kind: ENUM: 7, INPUT_OBJECT: 4, INTERFACE: 2, OBJECT: 60, SCALAR: 4, UNION: 1)
Operations:
- Query: Query | fields: _empty, filterPage, page, searchPage, settings
- Mutation: Mutation | fields: _empty, updateFormState, updateLocationDetails, updateRating
Directives: deprecated, include, skip (total: 3)

Readable stores: 2
settings (args: none) : id=459f063d-a13b-435a-80ee-e6165a933562 ratingFormId=4214648
ratingForm (args: none) : formSubmittedHeader=Thanks for rating! formSubmittedBodyText=Your feedback is helpful to continuously improve our resources! formDismissButtonText=CLOSE id=3e176d87-0cc6-4198-81dc-11bbaa2080d5 formId=4214648 formHeader=Rate this resource formSubmitButtonText=SUBMIT

Found on 2025-12-14 06:10

209.6 kBytes 9 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa39563946f31f9df3d5190f063c00b5265801894ce

GraphQL introspection enabled at /graphql
Types: 78 (by kind: ENUM: 7, INPUT_OBJECT: 4, INTERFACE: 2, OBJECT: 60, SCALAR: 4, UNION: 1)
Operations:
- Query: Query | fields: _empty, filterPage, page, searchPage, settings
- Mutation: Mutation | fields: _empty, updateFormState, updateLocationDetails, updateRating
Directives: deprecated, include, skip (total: 3)

Readable stores: 2
settings (args: none) : id=459f063d-a13b-435a-80ee-e6165a933562 ratingFormId=4214648
ratingForm (args: none) : formDismissButtonText=CLOSE id=3e176d87-0cc6-4198-81dc-11bbaa2080d5 formId=4214648 formHeader=Rate this resource formSubmitButtonText=SUBMIT formSubmittedHeader=Thanks for rating! formSubmittedBodyText=Your feedback is helpful to continuously improve our resources!

Found on 2025-12-12 21:42

209.6 kBytes 9 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa39563946f31f9df3d5190f063c00b52658d6d0e06

GraphQL introspection enabled at /graphql
Types: 78 (by kind: ENUM: 7, INPUT_OBJECT: 4, INTERFACE: 2, OBJECT: 60, SCALAR: 4, UNION: 1)
Operations:
- Query: Query | fields: _empty, filterPage, page, searchPage, settings
- Mutation: Mutation | fields: _empty, updateFormState, updateLocationDetails, updateRating
Directives: deprecated, include, skip (total: 3)

Readable stores: 2
settings (args: none) : id=459f063d-a13b-435a-80ee-e6165a933562 ratingFormId=4214648
ratingForm (args: none) : formSubmitButtonText=SUBMIT formSubmittedHeader=Thanks for rating! formSubmittedBodyText=Your feedback is helpful to continuously improve our resources! formDismissButtonText=CLOSE id=3e176d87-0cc6-4198-81dc-11bbaa2080d5 formId=4214648 formHeader=Rate this resource

Found on 2025-11-18 01:29

209.6 kBytes 9 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa39563946f31f9df3d5190f063c00b5265f6e85250

GraphQL introspection enabled at /graphql
Types: 78 (by kind: ENUM: 7, INPUT_OBJECT: 4, INTERFACE: 2, OBJECT: 60, SCALAR: 4, UNION: 1)
Operations:
- Query: Query | fields: _empty, filterPage, page, searchPage, settings
- Mutation: Mutation | fields: _empty, updateFormState, updateLocationDetails, updateRating
Directives: deprecated, include, skip (total: 3)

Readable stores: 2
settings (args: none) : ratingFormId=4214648 id=459f063d-a13b-435a-80ee-e6165a933562
ratingForm (args: none) : formHeader=Rate this resource formSubmitButtonText=SUBMIT formSubmittedHeader=Thanks for rating! formSubmittedBodyText=Your feedback is helpful to continuously improve our resources! formDismissButtonText=CLOSE id=3e176d87-0cc6-4198-81dc-11bbaa2080d5 formId=4214648

Found on 2025-11-18 01:29

209.6 kBytes 9 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa39563946f31f9df3d5190f063c00b526510ecaff4

GraphQL introspection enabled at /graphql
Types: 78 (by kind: ENUM: 7, INPUT_OBJECT: 4, INTERFACE: 2, OBJECT: 60, SCALAR: 4, UNION: 1)
Operations:
- Query: Query | fields: _empty, filterPage, page, searchPage, settings
- Mutation: Mutation | fields: _empty, updateFormState, updateLocationDetails, updateRating
Directives: deprecated, include, skip (total: 3)

Readable stores: 2
settings (args: none) : ratingFormId=4214648 id=459f063d-a13b-435a-80ee-e6165a933562
ratingForm (args: none) : formId=4214648 formHeader=Rate this resource formSubmitButtonText=SUBMIT formSubmittedHeader=Thanks for rating! formSubmittedBodyText=Your feedback is helpful to continuously improve our resources! formDismissButtonText=CLOSE id=3e176d87-0cc6-4198-81dc-11bbaa2080d5

Found on 2025-11-18 01:29

209.6 kBytes 9 rows

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 75.2.60.68
Domain: chat.lamixapp.com
Port: 443
URL: https://chat.lamixapp.com

First seen 2024-12-15 07:18
Last seen 2026-01-02 15:07
Open for 383 days

Severity: low
Fingerprint: 5f32cf5d6962f09ca0cc0fcfa0cc0fcffd690d70ddf8a088125351fca8a98456

Found 25 files trough .DS_Store spidering:

/audio
/css
/img
/img/avatar.png
/img/coins
/img/default-character.png
/img/heart
/img/load-dot.gif
/img/logo.png
/img/logo.webp
/img/lp_en
/img/lp_ja
/img/lpbanner
/img/lpbanner2
/img/lpbanner2/slide
/img/payment-methods
/img/placeholder-image-2.gif
/img/plan_slider
/img/stripe-logo.png
/img/testimonials
/js
/js/admin
/js/dashboard-infinite-scroll.js
/manifest.json
/videos

Found on 2026-01-02 15:07

Severity: low
Fingerprint: 5f32cf5d6962f09c0f8dcf020f8dcf0288d3351d871a97e5934eb2e519cc4404

Found 24 files trough .DS_Store spidering:

/audio
/css
/img
/img/avatar.png
/img/coins
/img/default-character.png
/img/heart
/img/load-dot.gif
/img/logo.png
/img/logo.webp
/img/lp_en
/img/lp_ja
/img/lpbanner
/img/lpbanner2
/img/lpbanner2/slide
/img/payment-methods
/img/placeholder-image-2.gif
/img/plan_slider
/img/stripe-logo.png
/img/testimonials
/js
/js/admin
/js/dashboard-infinite-scroll.js
/manifest.json

Found on 2025-12-26 17:23

Severity: low
Fingerprint: 5f32cf5d6962f09cab28146bab28146bc5e644fc9bfd5d1c31d667486d5f0db1

Found 21 files trough .DS_Store spidering:

/audio
/css
/img
/img/avatar.png
/img/default-character.png
/img/heart
/img/load-dot.gif
/img/logo.png
/img/logo.webp
/img/lp_en
/img/lp_ja
/img/lpbanner
/img/lpbanner2
/img/lpbanner2/slide
/img/payment-methods
/img/placeholder-image-2.gif
/img/plan_slider
/img/stripe-logo.png
/img/testimonials
/js
/manifest.json

Found on 2025-12-01 16:37

Severity: low
Fingerprint: 5f32cf5d6962f09c3838040e3838040ef9821039ba613ae9ea883bd193c846b3

Found 20 files trough .DS_Store spidering:

/audio
/css
/img
/img/avatar.png
/img/default-character.png
/img/load-dot.gif
/img/logo.png
/img/logo.webp
/img/lp_en
/img/lp_ja
/img/lpbanner
/img/lpbanner2
/img/lpbanner2/slide
/img/payment-methods
/img/placeholder-image-2.gif
/img/plan_slider
/img/stripe-logo.png
/img/testimonials
/js
/manifest.json

Found on 2025-11-28 23:27

Severity: low
Fingerprint: 5f32cf5d6962f09c9e04c3bc9e04c3bcff2b8d27400ff4cf02f7070787e5e2c4

Found 22 files trough .DS_Store spidering:

/audio
/css
/img
/img/avatar.png
/img/default-character.png
/img/load-dot.gif
/img/logo.png
/img/logo.webp
/img/lp_en
/img/lp_ja
/img/lpbanner
/img/lpbanner2
/img/lpbanner2/slide
/img/payment-methods
/img/placeholder-image-2.gif
/img/plan_slider
/img/stripe-logo.png
/img/testimonials
/js
/js/admin
/js/dashboard-infinite-scroll.js
/manifest.json

Found on 2025-11-27 02:25

Severity: low
Fingerprint: 5f32cf5d6962f09cab28146bab28146bc5e644fc9bfd5d1c31d66748447855c8

Found 21 files trough .DS_Store spidering:

/audio
/css
/img
/img/avatar.png
/img/default-character.png
/img/load-dot.gif
/img/logo.png
/img/logo.webp
/img/lp_en
/img/lp_ja
/img/lpbanner
/img/lpbanner2
/img/lpbanner2/slide
/img/payment-methods
/img/placeholder-image-2.gif
/img/plan_slider
/img/stripe-logo.png
/img/testimonials
/js
/js/admin
/manifest.json

Found on 2025-11-12 10:48

Severity: low
Fingerprint: 5f32cf5d6962f09c9e04c3bc9e04c3bcff2b8d27400ff4cf02f70707352e3447

Found 22 files trough .DS_Store spidering:

/audio
/css
/img
/img/avatar.png
/img/default-character.png
/img/load-dot.gif
/img/logo.png
/img/logo.webp
/img/lp_en
/img/lp_ja
/img/lpbanner
/img/lpbanner2
/img/lpbanner2/slide
/img/payment-methods
/img/placeholder-image-2.gif
/img/plan_slider
/img/stripe-logo.png
/img/testimonials
/js
/js/admin
/js/old
/manifest.json

Found on 2025-11-08 12:18

Severity: low
Fingerprint: 5f32cf5d6962f09c3838040e3838040ef9821039ba613ae9ea883bd1796359d7

Found 20 files trough .DS_Store spidering:

/audio
/css
/img
/img/avatar.png
/img/default-character.png
/img/load-dot.gif
/img/logo.png
/img/logo.webp
/img/lp_en
/img/lp_ja
/img/lpbanner
/img/payment-methods
/img/placeholder-image-2.gif
/img/plan_slider
/img/stripe-logo.png
/img/testimonials
/js
/js/admin
/js/old
/manifest.json

Found on 2025-08-04 18:21

Severity: low
Fingerprint: 5f32cf5d6962f09cdafa5447dafa5447b7e9ca7824efbd0079c49a24cf2b4fc4

Found 18 files trough .DS_Store spidering:

/audio
/css
/img
/img/avatar.png
/img/default-character.png
/img/load-dot.gif
/img/logo.png
/img/logo.webp
/img/lp_en
/img/lp_ja
/img/lpbanner
/img/payment-methods
/img/placeholder-image-2.gif
/img/plan_slider
/img/stripe-logo.png
/img/testimonials
/js
/manifest.json

Found on 2025-06-01 12:27

Severity: low
Fingerprint: 5f32cf5d6962f09c668fcbec668fcbecc9c3328ca2edf1388bf584674e09ddc8

Found 17 files trough .DS_Store spidering:

/css
/img
/img/avatar.png
/img/default-character.png
/img/load-dot.gif
/img/logo.png
/img/logo.webp
/img/lp_en
/img/lp_ja
/img/lpbanner
/img/payment-methods
/img/placeholder-image-2.gif
/img/plan_slider
/img/stripe-logo.png
/img/testimonials
/js
/manifest.json

Found on 2025-05-20 12:58

Severity: low
Fingerprint: 5f32cf5d6962f09cc169dbbec169dbbeac2272c601041282884bc00dce00ab0b

Found 15 files trough .DS_Store spidering:

/css
/img
/img/avatar.png
/img/default-character.png
/img/load-dot.gif
/img/logo.png
/img/logo.webp
/img/lp_en
/img/lp_ja
/img/lpbanner
/img/payment-methods
/img/placeholder-image-2.gif
/img/stripe-logo.png
/js
/manifest.json

Found on 2025-05-18 10:49

Severity: low
Fingerprint: 5f32cf5d6962f09cdafa5447dafa54476f97dfef0e4cb0a72ae5af1ab84865d7

Found 18 files trough .DS_Store spidering:

/css
/img
/img/avatar.png
/img/banner
/img/default-character.png
/img/gallery
/img/google_logo_neutral.png
/img/line_btn_base.png
/img/load-dot.gif
/img/logo.png
/img/logo.webp
/img/lpbanner
/img/payment-methods
/img/placeholder-image-2.gif
/img/sales
/img/stripe-logo.png
/js
/manifest.json

Found on 2025-04-24 11:52

Severity: low
Fingerprint: 5f32cf5d6962f09c668fcbec668fcbecc9c3328ca2edf1388bf58467be088dc3

Found 17 files trough .DS_Store spidering:

/css
/img
/img/avatar.png
/img/banner
/img/default-character.png
/img/google_logo_neutral.png
/img/line_btn_base.png
/img/load-dot.gif
/img/logo.png
/img/logo.webp
/img/lpbanner
/img/payment-methods
/img/placeholder-image-2.gif
/img/sales
/img/stripe-logo.png
/js
/manifest.json

Found on 2025-04-20 07:52

Severity: medium
Fingerprint: 5f32cf5d6962f09c740cb6cd740cb6cd75d91d152ea992555b3f1f0e76ac693f

Found 117 files trough .DS_Store spidering:

/css
/img
/img/ai_avatar_1.jpeg
/img/ai_avatar_2.webp
/img/ai_avatar_3.webp
/img/ai_avatar_4.jpeg
/img/ai_avatar_5.jpeg
/img/ai_avatar_6.jpeg
/img/ai_avatar_7.jpeg
/img/ai_avatar_8.webp
/img/ai_avatar_9.jpeg
/img/anime.jpeg
/img/anime_realistic.jpeg
/img/arrow-down.gif
/img/avatar.png
/img/avatar2_img1.jpeg
/img/avatar2_img2.jpeg
/img/avatar2_img3.jpeg
/img/avatar2_img4.jpeg
/img/avatar2_img5.jpeg
/img/avatar_english.webp
/img/avatar_girl_1.png
/img/avatar_girl_2.webp
/img/avatar_girl_3.png
/img/avatar_girl_4.jpeg
/img/avatar_girl_5.webp
/img/avatar_girl_6.jpg
/img/avatar_girl_7.jpg
/img/avatar_history (Copy 2).webp
/img/avatar_history (Copy 3).webp
/img/avatar_history (Copy 4).webp
/img/avatar_history (Copy).webp
/img/avatar_history.webp
/img/avatar_img1.jpeg
/img/avatar_img2.jpeg
/img/avatar_img3.jpeg
/img/avatar_img4.jpeg
/img/avatar_img5.png
/img/avatar_img6.jpeg
/img/avatar_math.webp
/img/avatar_science.webp
/img/banner
/img/banner1.png
/img/banner2.png
/img/best_illust.svg
/img/bg-1.png
/img/bg-1.webp
/img/bg-2.png
/img/bg-2.webp
/img/bg-3.webp
/img/bg-A.png
/img/bg-A1.png
/img/bg-A2.png
/img/bg-B.png
/img/bg1.png
/img/bg2.png
/img/bg3.png
/img/bg4.png
/img/bg5.png
/img/coins-1.jpg
/img/coins-1.png
/img/coins-2.jpg
/img/coins-2.png
/img/coins-3.jpg
/img/coins-3.png
/img/coins-4.jpg
/img/coins-4.png
/img/ct-1.png
/img/default-character.png
/img/discover-top.png
/img/google_logo_neutral.png
/img/googleauth.png
/img/hato.png
/img/icon1.png
/img/icon2.png
/img/icon3.png
/img/image-placeholder-2.gif
/img/line_btn_base.png
/img/load-dot.gif
/img/login-bg-862c043f.png
/img/logo.png
/img/logo.webp
/img/logo1.png
/img/logo1.webp
/img/logo11.webp
/img/logo2.webp
/img/logo3.webp
/img/logo4.webp
/img/logo5.webp
/img/logo6.webp
/img/logo7.webp
/img/lp-b-2.png
/img/novita.jpg
/img/nsfw-blurred-1.jpg
/img/nsfw-blurred-2.png
/img/nsfw-blurred.jpg
/img/payment-methods
/img/pc_lg02.jpg
/img/pc_lg02_rotate.jpg
/img/placeholder-image-2.gif
/img/point1.png
/img/point2.png
/img/point3.png
/img/real.jpeg
/img/realistic.jpeg
/img/robot.png
/img/robot1.png
/img/sales
/img/sd.jpg
/img/share.png
/img/stripe-logo.png
/img/top-bg2.png
/img/top1.png
/img/wave.png
/img/wave.webp
/js
/manifest.json

Found on 2025-03-22 19:13

Severity: medium
Fingerprint: 5f32cf5d6962f09c740cb6cd740cb6cd75d91d152ea992555b3f1f0e86679210

Found 117 files trough .DS_Store spidering:

/css
/img
/img/ai_avatar_1.jpeg
/img/ai_avatar_2.webp
/img/ai_avatar_3.webp
/img/ai_avatar_4.jpeg
/img/ai_avatar_5.jpeg
/img/ai_avatar_6.jpeg
/img/ai_avatar_7.jpeg
/img/ai_avatar_8.webp
/img/ai_avatar_9.jpeg
/img/anime.jpeg
/img/anime_realistic.jpeg
/img/arrow-down.gif
/img/avatar.png
/img/avatar2_img1.jpeg
/img/avatar2_img2.jpeg
/img/avatar2_img3.jpeg
/img/avatar2_img4.jpeg
/img/avatar2_img5.jpeg
/img/avatar_english.webp
/img/avatar_girl_1.png
/img/avatar_girl_2.webp
/img/avatar_girl_3.png
/img/avatar_girl_4.jpeg
/img/avatar_girl_5.webp
/img/avatar_girl_6.jpg
/img/avatar_girl_7.jpg
/img/avatar_history (Copy 2).webp
/img/avatar_history (Copy 3).webp
/img/avatar_history (Copy 4).webp
/img/avatar_history (Copy).webp
/img/avatar_history.webp
/img/avatar_img1.jpeg
/img/avatar_img2.jpeg
/img/avatar_img3.jpeg
/img/avatar_img4.jpeg
/img/avatar_img5.png
/img/avatar_img6.jpeg
/img/avatar_math.webp
/img/avatar_science.webp
/img/banner
/img/banner1.png
/img/banner2.png
/img/best_illust.svg
/img/bg-1.png
/img/bg-1.webp
/img/bg-2.png
/img/bg-2.webp
/img/bg-3.webp
/img/bg-A.png
/img/bg-A1.png
/img/bg-A2.png
/img/bg-B.png
/img/bg1.png
/img/bg2.png
/img/bg3.png
/img/bg4.png
/img/bg5.png
/img/coins-1.jpg
/img/coins-1.png
/img/coins-2.jpg
/img/coins-2.png
/img/coins-3.jpg
/img/coins-3.png
/img/coins-4.jpg
/img/coins-4.png
/img/ct-1.png
/img/default-character.png
/img/discover-top.png
/img/google_logo_neutral.png
/img/googleauth.png
/img/hato.png
/img/icon1.png
/img/icon2.png
/img/icon3.png
/img/image-placeholder-1.gif
/img/line_btn_base.png
/img/load-dot.gif
/img/login-bg-862c043f.png
/img/logo.png
/img/logo.webp
/img/logo1.png
/img/logo1.webp
/img/logo11.webp
/img/logo2.webp
/img/logo3.webp
/img/logo4.webp
/img/logo5.webp
/img/logo6.webp
/img/logo7.webp
/img/lp-b-2.png
/img/novita.jpg
/img/nsfw-blurred-1.jpg
/img/nsfw-blurred-2.png
/img/nsfw-blurred.jpg
/img/payment-methods
/img/pc_lg02.jpg
/img/pc_lg02_rotate.jpg
/img/placeholder-image-2.gif
/img/point1.png
/img/point2.png
/img/point3.png
/img/real.jpeg
/img/realistic.jpeg
/img/robot.png
/img/robot1.png
/img/sales
/img/sd.jpg
/img/share.png
/img/stripe-logo.png
/img/top-bg2.png
/img/top1.png
/img/wave.png
/img/wave.webp
/js
/manifest.json

Found on 2025-01-30 06:28

Severity: medium
Fingerprint: 5f32cf5d6962f09ce562b5bfe562b5bfc9a94177ed02513fe683883c5697ae4f

Found 115 files trough .DS_Store spidering:

/css
/img
/img/ai_avatar_1.jpeg
/img/ai_avatar_2.webp
/img/ai_avatar_3.webp
/img/ai_avatar_4.jpeg
/img/ai_avatar_5.jpeg
/img/ai_avatar_6.jpeg
/img/ai_avatar_7.jpeg
/img/ai_avatar_8.webp
/img/ai_avatar_9.jpeg
/img/anime.jpeg
/img/anime_realistic.jpeg
/img/arrow-down.gif
/img/avatar.png
/img/avatar2_img1.jpeg
/img/avatar2_img2.jpeg
/img/avatar2_img3.jpeg
/img/avatar2_img4.jpeg
/img/avatar2_img5.jpeg
/img/avatar_english.webp
/img/avatar_girl_1.png
/img/avatar_girl_2.webp
/img/avatar_girl_3.png
/img/avatar_girl_4.jpeg
/img/avatar_girl_5.webp
/img/avatar_girl_6.jpg
/img/avatar_girl_7.jpg
/img/avatar_history (Copy 2).webp
/img/avatar_history (Copy 3).webp
/img/avatar_history (Copy 4).webp
/img/avatar_history (Copy).webp
/img/avatar_history.webp
/img/avatar_img1.jpeg
/img/avatar_img2.jpeg
/img/avatar_img3.jpeg
/img/avatar_img4.jpeg
/img/avatar_img5.png
/img/avatar_img6.jpeg
/img/avatar_math.webp
/img/avatar_science.webp
/img/banner1.png
/img/banner2.png
/img/best_illust.svg
/img/bg-1.png
/img/bg-1.webp
/img/bg-2.png
/img/bg-2.webp
/img/bg-3.webp
/img/bg-A.png
/img/bg-A1.png
/img/bg-A2.png
/img/bg-B.png
/img/bg1.png
/img/bg2.png
/img/bg3.png
/img/bg4.png
/img/bg5.png
/img/coins-1.jpg
/img/coins-1.png
/img/coins-2.jpg
/img/coins-2.png
/img/coins-3.jpg
/img/coins-3.png
/img/coins-4.jpg
/img/coins-4.png
/img/ct-1.png
/img/default-character.png
/img/discover-top.png
/img/google_logo_neutral.png
/img/googleauth.png
/img/hato.png
/img/icon1.png
/img/icon2.png
/img/icon3.png
/img/image-placeholder-1.gif
/img/line_btn_base.png
/img/load-dot.gif
/img/login-bg-862c043f.png
/img/logo.png
/img/logo.webp
/img/logo1.png
/img/logo1.webp
/img/logo11.webp
/img/logo2.webp
/img/logo3.webp
/img/logo4.webp
/img/logo5.webp
/img/logo6.webp
/img/logo7.webp
/img/lp-b-2.png
/img/novita.jpg
/img/nsfw-blurred-1.jpg
/img/nsfw-blurred-2.png
/img/nsfw-blurred.jpg
/img/pc_lg02.jpg
/img/pc_lg02_rotate.jpg
/img/placeholder-image-2.gif
/img/point1.png
/img/point2.png
/img/point3.png
/img/real.jpeg
/img/realistic.jpeg
/img/robot.png
/img/robot1.png
/img/sales
/img/sd.jpg
/img/share.png
/img/stripe-logo.png
/img/top-bg2.png
/img/top1.png
/img/wave.png
/img/wave.webp
/js
/manifest.json

Found on 2025-01-18 15:08

Severity: medium
Fingerprint: 5f32cf5d6962f09c2f1697202f1697203092aab8bda360ac84a4fb015215719c

Found 116 files trough .DS_Store spidering:

/css
/img
/img/ai_avatar_1.jpeg
/img/ai_avatar_2.webp
/img/ai_avatar_3.webp
/img/ai_avatar_4.jpeg
/img/ai_avatar_5.jpeg
/img/ai_avatar_6.jpeg
/img/ai_avatar_7.jpeg
/img/ai_avatar_8.webp
/img/ai_avatar_9.jpeg
/img/anime.jpeg
/img/anime_realistic.jpeg
/img/arrow-down.gif
/img/avatar.png
/img/avatar2_img1.jpeg
/img/avatar2_img2.jpeg
/img/avatar2_img3.jpeg
/img/avatar2_img4.jpeg
/img/avatar2_img5.jpeg
/img/avatar_english.webp
/img/avatar_girl_1.png
/img/avatar_girl_2.webp
/img/avatar_girl_3.png
/img/avatar_girl_4.jpeg
/img/avatar_girl_5.webp
/img/avatar_girl_6.jpg
/img/avatar_girl_7.jpg
/img/avatar_history (Copy 2).webp
/img/avatar_history (Copy 3).webp
/img/avatar_history (Copy 4).webp
/img/avatar_history (Copy).webp
/img/avatar_history.webp
/img/avatar_img1.jpeg
/img/avatar_img2.jpeg
/img/avatar_img3.jpeg
/img/avatar_img4.jpeg
/img/avatar_img5.png
/img/avatar_img6.jpeg
/img/avatar_math.webp
/img/avatar_science.webp
/img/banner1.png
/img/banner2.png
/img/best_illust.svg
/img/bg-1.png
/img/bg-1.webp
/img/bg-2.png
/img/bg-2.webp
/img/bg-3.webp
/img/bg-A.png
/img/bg-A1.png
/img/bg-A2.png
/img/bg-B.png
/img/bg1.png
/img/bg2.png
/img/bg3.png
/img/bg4.png
/img/bg5.png
/img/coins-1.jpg
/img/coins-1.png
/img/coins-2.jpg
/img/coins-2.png
/img/coins-3.jpg
/img/coins-3.png
/img/coins-4.jpg
/img/coins-4.png
/img/ct-1.png
/img/default-character.png
/img/discover-top.png
/img/google_logo_neutral.png
/img/googleauth.png
/img/hato.png
/img/icon1.png
/img/icon2.png
/img/icon3.png
/img/image-placeholder-1.gif
/img/line_btn_base.png
/img/load-dot.gif
/img/login-bg-862c043f.png
/img/logo.png
/img/logo.webp
/img/logo1.png
/img/logo1.webp
/img/logo11.webp
/img/logo2.webp
/img/logo3.webp
/img/logo4.webp
/img/logo5.webp
/img/logo6.webp
/img/logo7.webp
/img/lp-b-2.png
/img/novita.jpg
/img/nsfw-blurred-1.jpg
/img/nsfw-blurred-2.png
/img/nsfw-blurred.jpg
/img/pc_lg02.jpg
/img/pc_lg02_rotate.jpg
/img/placeholder-image-2.gif
/img/point1.png
/img/point2.png
/img/point3.png
/img/real.jpeg
/img/realistic.jpeg
/img/robot.png
/img/robot1.png
/img/sales
/img/sd.jpg
/img/share.png
/img/stripe-logo.png
/img/top-bg2.png
/img/top1.png
/img/wave.png
/img/wave.webp
/js
/manifest.json
/output

Found on 2025-01-14 23:13

Severity: medium
Fingerprint: 5f32cf5d6962f09c2f1697202f1697203092aab8bda360ac84a4fb0141b4f026

Found 116 files trough .DS_Store spidering:

/css
/img
/img/ai_avatar_1.jpeg
/img/ai_avatar_2.webp
/img/ai_avatar_3.webp
/img/ai_avatar_4.jpeg
/img/ai_avatar_5.jpeg
/img/ai_avatar_6.jpeg
/img/ai_avatar_7.jpeg
/img/ai_avatar_8.webp
/img/ai_avatar_9.jpeg
/img/anime.jpeg
/img/anime_realistic.jpeg
/img/arrow-down.gif
/img/avatar.png
/img/avatar2_img1.jpeg
/img/avatar2_img2.jpeg
/img/avatar2_img3.jpeg
/img/avatar2_img4.jpeg
/img/avatar2_img5.jpeg
/img/avatar_english.webp
/img/avatar_girl_1.png
/img/avatar_girl_2.webp
/img/avatar_girl_3.png
/img/avatar_girl_4.jpeg
/img/avatar_girl_5.webp
/img/avatar_girl_6.jpg
/img/avatar_girl_7.jpg
/img/avatar_history (Copy 2).webp
/img/avatar_history (Copy 3).webp
/img/avatar_history (Copy 4).webp
/img/avatar_history (Copy).webp
/img/avatar_history.webp
/img/avatar_img1.jpeg
/img/avatar_img2.jpeg
/img/avatar_img3.jpeg
/img/avatar_img4.jpeg
/img/avatar_img5.png
/img/avatar_img6.jpeg
/img/avatar_math.webp
/img/avatar_science.webp
/img/banner1.png
/img/banner2.png
/img/best_illust.svg
/img/bg-1.png
/img/bg-1.webp
/img/bg-2.png
/img/bg-2.webp
/img/bg-3.webp
/img/bg-A.png
/img/bg-A1.png
/img/bg-A2.png
/img/bg-B.png
/img/bg1.png
/img/bg2.png
/img/bg3.png
/img/bg4.png
/img/bg5.png
/img/coins-1.jpg
/img/coins-1.png
/img/coins-2.jpg
/img/coins-2.png
/img/coins-3.jpg
/img/coins-3.png
/img/coins-4.jpg
/img/coins-4.png
/img/ct-1.png
/img/default-character.png
/img/discover-top.png
/img/google_logo_neutral.png
/img/googleauth.png
/img/hato.png
/img/icon1.png
/img/icon2.png
/img/icon3.png
/img/image-placeholder-1.gif
/img/image-placeholder-2.gif
/img/line_btn_base.png
/img/load-dot.gif
/img/login-bg-862c043f.png
/img/logo.png
/img/logo.webp
/img/logo1.png
/img/logo1.webp
/img/logo11.webp
/img/logo2.webp
/img/logo3.webp
/img/logo4.webp
/img/logo5.webp
/img/logo6.webp
/img/logo7.webp
/img/lp-b-2.png
/img/novita.jpg
/img/nsfw-blurred-1.jpg
/img/nsfw-blurred-2.png
/img/nsfw-blurred.jpg
/img/pc_lg02.jpg
/img/pc_lg02_rotate.jpg
/img/point1.png
/img/point2.png
/img/point3.png
/img/real.jpeg
/img/realistic.jpeg
/img/robot.png
/img/robot1.png
/img/sales
/img/sd.jpg
/img/share.png
/img/stripe-logo.png
/img/top-bg2.png
/img/top1.png
/img/wave.png
/img/wave.webp
/js
/manifest.json
/output

Found on 2024-12-28 13:54

Create report

GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: api-v2-staging.coflyt.com
Port: 443
URL: https://api-v2-staging.coflyt.com

First seen 2025-11-24 00:46
Last seen 2026-01-02 14:37
Open for 39 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa3
```
GraphQL introspection enabled at /graphql
```
  Found on 2026-01-02 14:37
Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: globo-api-prod.s-district.click
Port: 443
URL: https://globo-api-prod.s-district.click

First seen 2025-11-02 00:28
Last seen 2026-01-02 14:31
Open for 61 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3781412769b463766adf06ddc22d7a1252f2fbffe

GraphQL introspection enabled at /graphql
Types: 143 (by kind: ENUM: 18, INPUT_OBJECT: 66, OBJECT: 52, SCALAR: 6, UNION: 1)
Operations:
- Query: Query | fields: alternativeLogin, classicLogin, emailsTraces, mobileLogin, venueEventCategories
- Mutation: Mutation | fields: logout, refresh, removeFiles, removeOldEmailFiles, uploadFile
- Subscription: Subscription | fields: campaignDataChange, emailsTracesChange, venueEventCategoryDataChange, venueEventDataChange, venueEventReservationsChange
Directives: deprecated, include, skip, specifiedBy (total: 4)

Found on 2026-01-02 14:31

156.4 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa3
```
GraphQL introspection enabled at /graphql
```
Found on 2025-11-22 11:25

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: api-dev.swoop.me
Port: 80
URL: http://api-dev.swoop.me

First seen 2025-12-08 00:59
Last seen 2026-01-02 14:26
Open for 25 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa31b795fe478f3a9e804bb435c19a956b7314e37e3

GraphQL introspection enabled at /graphql
Types: 122 (by kind: ENUM: 8, INPUT_OBJECT: 42, INTERFACE: 2, OBJECT: 64, SCALAR: 6)
Operations:
- Query: Query | fields: channel, channels, environment, nodeVersion, status
- Mutation: Mutation | fields: createUserChannel, shareUserChannel, unShareUserChannel, updateStatus, updateUserChannel
- Subscription: Subscription | fields: chatGroup, status, user, userChannelUpdated, viewer
Directives: auth, deprecated, include, oneOf, skip, specifiedBy (total: 6)

Found on 2026-01-02 14:26

111.9 kBytes

Create report

GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: api.flying-riceball.com
Port: 80
URL: http://api.flying-riceball.com

First seen 2025-12-02 01:13
Last seen 2026-01-02 14:12
Open for 31 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa34083c9cc730e8f904b18c9d957a7814d57a7814d
```
GraphQL introspection enabled at /graphql
Types: 16 (by kind: ENUM: 2, OBJECT: 11, SCALAR: 3)
Operations:
- Query: Query | fields: comments, hello, race, races, users
Directives: deprecated, include, skip, specifiedBy (total: 4)
```
  Found on 2026-01-02 14:12
  
  24.0 kBytes
Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: api.certify-ed.com
Port: 443
URL: https://api.certify-ed.com

First seen 2025-11-11 00:36
Last seen 2026-01-02 14:06
Open for 52 days

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d6d6f7266f4bfe653dec1f4d939048a6e996486034

GraphQL introspection enabled at /api/graphql
Types: 272 (by kind: ENUM: 18, INPUT_OBJECT: 83, INTERFACE: 1, OBJECT: 164, SCALAR: 6)
Operations:
- Query: RootQueryType | fields: accounts, certificationExam, certificationProgresses, courses, currentAccount
- Mutation: RootMutationType | fields: acceptTerms, addCourseAssets, addSimulation, addVrVideoExample, cancelReminder
- Subscription: RootSubscriptionType | fields: notificationFeed, seedCourseFeed
Directives: include, skip (total: 2)

Found on 2026-01-02 14:06

213.5 kBytes

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: backend.gorjianacq.com
Port: 443
URL: https://backend.gorjianacq.com

First seen 2025-12-12 01:17
Last seen 2026-01-02 13:52
Open for 21 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa359f4db3d168df7df2c38965b97801f0bed66703a

GraphQL introspection enabled at /graphql
Types: 148 (by kind: ENUM: 14, INPUT_OBJECT: 49, OBJECT: 78, SCALAR: 7)
Operations:
- Query: Query | fields: heartbeat, viewer
- Mutation: Mutation | fields: createReport, login, refreshToken, signup, updateAssociate
- Subscription: Subscription | fields: importBlaster, importBlasterAlt, search
Directives: _unmask, defer, deprecated, goField, hasRole, include, skip, specifiedBy (total: 8)

Found on 2026-01-02 13:52

165.2 kBytes

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: backend.gorjianacq.com
Port: 80
URL: http://backend.gorjianacq.com

First seen 2025-12-12 01:17
Last seen 2026-01-02 13:52
Open for 21 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa359f4db3d168df7df2c38965b97801f0bed66703a

GraphQL introspection enabled at /graphql
Types: 148 (by kind: ENUM: 14, INPUT_OBJECT: 49, OBJECT: 78, SCALAR: 7)
Operations:
- Query: Query | fields: heartbeat, viewer
- Mutation: Mutation | fields: createReport, login, refreshToken, signup, updateAssociate
- Subscription: Subscription | fields: importBlaster, importBlasterAlt, search
Directives: _unmask, defer, deprecated, goField, hasRole, include, skip, specifiedBy (total: 8)

Found on 2026-01-02 13:52

165.2 kBytes

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 99.83.220.108
Domain: es.help.nationaldeafcenter.org
Port: 443
URL: https://es.help.nationaldeafcenter.org

First seen 2025-12-06 00:58
Last seen 2026-01-02 13:49
Open for 27 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de9c14f0571

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=4 status=ok timestamp=2026-01-02T13:49:41Z

Found on 2026-01-02 13:49

71.7 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de9ca75aa69

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : timestamp=2025-12-30T14:46:16Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=6 status=ok

Found on 2025-12-30 14:46

71.7 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de9b115dced

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : responseTimeMs=52 status=ok timestamp=2025-12-26T12:23:33Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip]

Found on 2025-12-26 12:23

72.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de9f3e20caf

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : status=ok timestamp=2025-12-24T10:37:44Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=88

Found on 2025-12-24 10:37

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de9b4777337

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=126 status=ok timestamp=2025-12-22T10:10:13Z

Found on 2025-12-22 10:10

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de96c1eec15

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=100 status=ok timestamp=2025-12-20T07:11:32Z

Found on 2025-12-20 07:11

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de956523d1b

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : responseTimeMs=60 status=ok timestamp=2025-12-18T06:18:10Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip]

Found on 2025-12-18 06:18

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de9858bac6b

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : status=ok timestamp=2025-12-16T04:32:08Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=45

Found on 2025-12-16 04:32

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de965c78e3f

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : responseTimeMs=49 status=ok timestamp=2025-12-14T02:35:09Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip]

Found on 2025-12-14 02:35

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de953143a0e

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=45 status=ok timestamp=2025-12-12T12:39:56Z languagesCount=189

Found on 2025-12-12 12:39

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de9d516c607

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=72 status=ok timestamp=2025-12-10T13:34:46Z languagesCount=189

Found on 2025-12-10 13:34

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de9e05dacb6

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : responseTimeMs=49 status=ok timestamp=2025-12-08T02:00:23Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip]

Found on 2025-12-08 02:00

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de92868c774

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=65 status=ok timestamp=2025-12-06T00:58:53Z languagesCount=189

Found on 2025-12-06 00:58

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de91232fe5c

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=132 status=ok timestamp=2025-12-06T00:58:54Z

Found on 2025-12-06 00:58

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de9f3638dd6

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : responseTimeMs=47 status=ok timestamp=2025-12-06T00:58:55Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip]

Found on 2025-12-06 00:58

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de987053a41

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : status=ok timestamp=2025-12-06T00:58:54Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=52

Found on 2025-12-06 00:58

71.1 kBytes 5 rows

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 75.2.60.68
Domain: console.navybmr.com
Port: 443
URL: https://console.navybmr.com

First seen 2025-04-28 19:56
Last seen 2026-01-02 13:00
Open for 248 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9d89c0562b89c0562b89c0562b89c0562b
```
Found 1 files trough .DS_Store spidering:

/bmr
```
  Found on 2026-01-02 13:00
Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: stage-api.local-drive.xyz
Port: 443
URL: https://stage-api.local-drive.xyz

First seen 2025-11-19 01:52
Last seen 2026-01-02 12:57
Open for 44 days

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d6dd27f08888c6b5acd2ff7b4d8619b8eba63d123d

GraphQL introspection enabled at /api/graphql
Types: 321 (by kind: ENUM: 53, INPUT_OBJECT: 100, INTERFACE: 1, OBJECT: 156, SCALAR: 9, UNION: 2)
Operations:
- Query: RootQueryType | fields: browseAudienceByParent, defaultColorTheme, facebookAdAccounts, facebookBrowseTargetingLists, facebookCampaignEstimate
- Mutation: RootMutationType | fields: activateSubscription, adminUpdateAccount, apiErrorsLogsCsv, blockCorporate, cancelCampaignInstance
- Subscription: RootSubscriptionType | fields: notifications
Directives: deprecated, include, skip, specifiedBy (total: 4)

Found on 2026-01-02 12:57

368.1 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d62337d3d62337d3d62337d3d62337d3d62337d3d6
```
GraphQL introspection enabled at /api/graphql
```
Found on 2025-11-19 01:52

Create report

GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: www.warmupz.com
Port: 443
URL: https://www.warmupz.com

First seen 2025-11-11 00:26
Last seen 2026-01-02 12:54
Open for 52 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa3b55893718f486bf3e69d676629fa601c3c9858a4
```
GraphQL introspection enabled at /graphql
Types: 24 (by kind: ENUM: 2, INPUT_OBJECT: 3, OBJECT: 15, SCALAR: 4)
Operations:
- Query: Query | fields: feedbacks, testField, warmups
- Mutation: Mutation | fields: addFeedback, addInterestedPerson, addSubmission
Directives: deprecated, include, skip (total: 3)
```
  Found on 2026-01-02 12:54
  
  25.5 kBytes
Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 75.2.60.68
Domain: en.chatlamix.com
Port: 443
URL: https://en.chatlamix.com

First seen 2024-12-26 00:27
Last seen 2026-01-02 12:27
Open for 372 days

Severity: low
Fingerprint: 5f32cf5d6962f09ca0cc0fcfa0cc0fcffd690d70ddf8a088125351fca8a98456

Found 25 files trough .DS_Store spidering:

/audio
/css
/img
/img/avatar.png
/img/coins
/img/default-character.png
/img/heart
/img/load-dot.gif
/img/logo.png
/img/logo.webp
/img/lp_en
/img/lp_ja
/img/lpbanner
/img/lpbanner2
/img/lpbanner2/slide
/img/payment-methods
/img/placeholder-image-2.gif
/img/plan_slider
/img/stripe-logo.png
/img/testimonials
/js
/js/admin
/js/dashboard-infinite-scroll.js
/manifest.json
/videos

Found on 2026-01-02 12:27

Severity: low
Fingerprint: 5f32cf5d6962f09c0f8dcf020f8dcf0288d3351d871a97e5934eb2e519cc4404

Found 24 files trough .DS_Store spidering:

/audio
/css
/img
/img/avatar.png
/img/coins
/img/default-character.png
/img/heart
/img/load-dot.gif
/img/logo.png
/img/logo.webp
/img/lp_en
/img/lp_ja
/img/lpbanner
/img/lpbanner2
/img/lpbanner2/slide
/img/payment-methods
/img/placeholder-image-2.gif
/img/plan_slider
/img/stripe-logo.png
/img/testimonials
/js
/js/admin
/js/dashboard-infinite-scroll.js
/manifest.json

Found on 2025-12-30 13:13

Severity: low
Fingerprint: 5f32cf5d6962f09c3838040e3838040ef9821039ba613ae9ea883bd1457371a3

Found 20 files trough .DS_Store spidering:

/audio
/css
/img
/img/avatar.png
/img/default-character.png
/img/heart
/img/load-dot.gif
/img/logo.png
/img/logo.webp
/img/lp_en
/img/lp_ja
/img/lpbanner
/img/lpbanner2
/img/payment-methods
/img/placeholder-image-2.gif
/img/plan_slider
/img/stripe-logo.png
/img/testimonials
/js
/manifest.json

Found on 2025-12-01 16:37

Severity: low
Fingerprint: 5f32cf5d6962f09c9e04c3bc9e04c3bcff2b8d27400ff4cf02f7070787e5e2c4

Found 22 files trough .DS_Store spidering:

/audio
/css
/img
/img/avatar.png
/img/default-character.png
/img/load-dot.gif
/img/logo.png
/img/logo.webp
/img/lp_en
/img/lp_ja
/img/lpbanner
/img/lpbanner2
/img/lpbanner2/slide
/img/payment-methods
/img/placeholder-image-2.gif
/img/plan_slider
/img/stripe-logo.png
/img/testimonials
/js
/js/admin
/js/dashboard-infinite-scroll.js
/manifest.json

Found on 2025-11-28 23:27

Severity: low
Fingerprint: 5f32cf5d6962f09c3838040e3838040ef9821039ba613ae9ea883bd193c846b3

Found 20 files trough .DS_Store spidering:

/audio
/css
/img
/img/avatar.png
/img/default-character.png
/img/load-dot.gif
/img/logo.png
/img/logo.webp
/img/lp_en
/img/lp_ja
/img/lpbanner
/img/lpbanner2
/img/lpbanner2/slide
/img/payment-methods
/img/placeholder-image-2.gif
/img/plan_slider
/img/stripe-logo.png
/img/testimonials
/js
/manifest.json

Found on 2025-11-27 02:25

Severity: low
Fingerprint: 5f32cf5d6962f09cab28146bab28146bc5e644fc9bfd5d1c31d66748447855c8

Found 21 files trough .DS_Store spidering:

/audio
/css
/img
/img/avatar.png
/img/default-character.png
/img/load-dot.gif
/img/logo.png
/img/logo.webp
/img/lp_en
/img/lp_ja
/img/lpbanner
/img/lpbanner2
/img/lpbanner2/slide
/img/payment-methods
/img/placeholder-image-2.gif
/img/plan_slider
/img/stripe-logo.png
/img/testimonials
/js
/js/admin
/manifest.json

Found on 2025-11-12 10:30

Severity: low
Fingerprint: 5f32cf5d6962f09c9e04c3bc9e04c3bcff2b8d27400ff4cf02f70707352e3447

Found 22 files trough .DS_Store spidering:

/audio
/css
/img
/img/avatar.png
/img/default-character.png
/img/load-dot.gif
/img/logo.png
/img/logo.webp
/img/lp_en
/img/lp_ja
/img/lpbanner
/img/lpbanner2
/img/lpbanner2/slide
/img/payment-methods
/img/placeholder-image-2.gif
/img/plan_slider
/img/stripe-logo.png
/img/testimonials
/js
/js/admin
/js/old
/manifest.json

Found on 2025-11-08 13:11

Severity: low
Fingerprint: 5f32cf5d6962f09cdc57c57adc57c57ac0122905a632e6bd0463908d1229ba08

Found 19 files trough .DS_Store spidering:

/audio
/css
/img
/img/avatar.png
/img/default-character.png
/img/load-dot.gif
/img/logo.png
/img/logo.webp
/img/lp_en
/img/lp_ja
/img/lpbanner
/img/lpbanner2
/img/payment-methods
/img/placeholder-image-2.gif
/img/plan_slider
/img/stripe-logo.png
/img/testimonials
/js
/manifest.json

Found on 2025-09-27 02:24

Severity: low
Fingerprint: 5f32cf5d6962f09c3838040e3838040ef9821039ba613ae9ea883bd1796359d7

Found 20 files trough .DS_Store spidering:

/audio
/css
/img
/img/avatar.png
/img/default-character.png
/img/load-dot.gif
/img/logo.png
/img/logo.webp
/img/lp_en
/img/lp_ja
/img/lpbanner
/img/payment-methods
/img/placeholder-image-2.gif
/img/plan_slider
/img/stripe-logo.png
/img/testimonials
/js
/js/admin
/js/old
/manifest.json

Found on 2025-08-03 14:22

Severity: low
Fingerprint: 5f32cf5d6962f09cdafa5447dafa5447b7e9ca7824efbd0079c49a24cf2b4fc4

Found 18 files trough .DS_Store spidering:

/audio
/css
/img
/img/avatar.png
/img/default-character.png
/img/load-dot.gif
/img/logo.png
/img/logo.webp
/img/lp_en
/img/lp_ja
/img/lpbanner
/img/payment-methods
/img/placeholder-image-2.gif
/img/plan_slider
/img/stripe-logo.png
/img/testimonials
/js
/manifest.json

Found on 2025-06-02 09:26

Severity: low
Fingerprint: 5f32cf5d6962f09c668fcbec668fcbecc9c3328ca2edf1388bf584674e09ddc8

Found 17 files trough .DS_Store spidering:

/css
/img
/img/avatar.png
/img/default-character.png
/img/load-dot.gif
/img/logo.png
/img/logo.webp
/img/lp_en
/img/lp_ja
/img/lpbanner
/img/payment-methods
/img/placeholder-image-2.gif
/img/plan_slider
/img/stripe-logo.png
/img/testimonials
/js
/manifest.json

Found on 2025-05-20 02:54

Severity: low
Fingerprint: 5f32cf5d6962f09cc169dbbec169dbbeac2272c601041282884bc00dce00ab0b

Found 15 files trough .DS_Store spidering:

/css
/img
/img/avatar.png
/img/default-character.png
/img/load-dot.gif
/img/logo.png
/img/logo.webp
/img/lp_en
/img/lp_ja
/img/lpbanner
/img/payment-methods
/img/placeholder-image-2.gif
/img/stripe-logo.png
/js
/manifest.json

Found on 2025-05-16 23:58

Severity: low
Fingerprint: 5f32cf5d6962f09cdafa5447dafa54476f97dfef0e4cb0a72ae5af1ab84865d7

Found 18 files trough .DS_Store spidering:

/css
/img
/img/avatar.png
/img/banner
/img/default-character.png
/img/gallery
/img/google_logo_neutral.png
/img/line_btn_base.png
/img/load-dot.gif
/img/logo.png
/img/logo.webp
/img/lpbanner
/img/payment-methods
/img/placeholder-image-2.gif
/img/sales
/img/stripe-logo.png
/js
/manifest.json

Found on 2025-04-25 00:57

Severity: low
Fingerprint: 5f32cf5d6962f09c668fcbec668fcbecc9c3328ca2edf1388bf58467be088dc3

Found 17 files trough .DS_Store spidering:

/css
/img
/img/avatar.png
/img/banner
/img/default-character.png
/img/google_logo_neutral.png
/img/line_btn_base.png
/img/load-dot.gif
/img/logo.png
/img/logo.webp
/img/lpbanner
/img/payment-methods
/img/placeholder-image-2.gif
/img/sales
/img/stripe-logo.png
/js
/manifest.json

Found on 2025-04-20 22:30

Severity: medium
Fingerprint: 5f32cf5d6962f09c740cb6cd740cb6cd75d91d152ea992555b3f1f0e76ac693f

Found 117 files trough .DS_Store spidering:

/css
/img
/img/ai_avatar_1.jpeg
/img/ai_avatar_2.webp
/img/ai_avatar_3.webp
/img/ai_avatar_4.jpeg
/img/ai_avatar_5.jpeg
/img/ai_avatar_6.jpeg
/img/ai_avatar_7.jpeg
/img/ai_avatar_8.webp
/img/ai_avatar_9.jpeg
/img/anime.jpeg
/img/anime_realistic.jpeg
/img/arrow-down.gif
/img/avatar.png
/img/avatar2_img1.jpeg
/img/avatar2_img2.jpeg
/img/avatar2_img3.jpeg
/img/avatar2_img4.jpeg
/img/avatar2_img5.jpeg
/img/avatar_english.webp
/img/avatar_girl_1.png
/img/avatar_girl_2.webp
/img/avatar_girl_3.png
/img/avatar_girl_4.jpeg
/img/avatar_girl_5.webp
/img/avatar_girl_6.jpg
/img/avatar_girl_7.jpg
/img/avatar_history (Copy 2).webp
/img/avatar_history (Copy 3).webp
/img/avatar_history (Copy 4).webp
/img/avatar_history (Copy).webp
/img/avatar_history.webp
/img/avatar_img1.jpeg
/img/avatar_img2.jpeg
/img/avatar_img3.jpeg
/img/avatar_img4.jpeg
/img/avatar_img5.png
/img/avatar_img6.jpeg
/img/avatar_math.webp
/img/avatar_science.webp
/img/banner
/img/banner1.png
/img/banner2.png
/img/best_illust.svg
/img/bg-1.png
/img/bg-1.webp
/img/bg-2.png
/img/bg-2.webp
/img/bg-3.webp
/img/bg-A.png
/img/bg-A1.png
/img/bg-A2.png
/img/bg-B.png
/img/bg1.png
/img/bg2.png
/img/bg3.png
/img/bg4.png
/img/bg5.png
/img/coins-1.jpg
/img/coins-1.png
/img/coins-2.jpg
/img/coins-2.png
/img/coins-3.jpg
/img/coins-3.png
/img/coins-4.jpg
/img/coins-4.png
/img/ct-1.png
/img/default-character.png
/img/discover-top.png
/img/google_logo_neutral.png
/img/googleauth.png
/img/hato.png
/img/icon1.png
/img/icon2.png
/img/icon3.png
/img/image-placeholder-2.gif
/img/line_btn_base.png
/img/load-dot.gif
/img/login-bg-862c043f.png
/img/logo.png
/img/logo.webp
/img/logo1.png
/img/logo1.webp
/img/logo11.webp
/img/logo2.webp
/img/logo3.webp
/img/logo4.webp
/img/logo5.webp
/img/logo6.webp
/img/logo7.webp
/img/lp-b-2.png
/img/novita.jpg
/img/nsfw-blurred-1.jpg
/img/nsfw-blurred-2.png
/img/nsfw-blurred.jpg
/img/payment-methods
/img/pc_lg02.jpg
/img/pc_lg02_rotate.jpg
/img/placeholder-image-2.gif
/img/point1.png
/img/point2.png
/img/point3.png
/img/real.jpeg
/img/realistic.jpeg
/img/robot.png
/img/robot1.png
/img/sales
/img/sd.jpg
/img/share.png
/img/stripe-logo.png
/img/top-bg2.png
/img/top1.png
/img/wave.png
/img/wave.webp
/js
/manifest.json

Found on 2025-03-22 22:51

Severity: medium
Fingerprint: 5f32cf5d6962f09c740cb6cd740cb6cd75d91d152ea992555b3f1f0e86679210

Found 117 files trough .DS_Store spidering:

/css
/img
/img/ai_avatar_1.jpeg
/img/ai_avatar_2.webp
/img/ai_avatar_3.webp
/img/ai_avatar_4.jpeg
/img/ai_avatar_5.jpeg
/img/ai_avatar_6.jpeg
/img/ai_avatar_7.jpeg
/img/ai_avatar_8.webp
/img/ai_avatar_9.jpeg
/img/anime.jpeg
/img/anime_realistic.jpeg
/img/arrow-down.gif
/img/avatar.png
/img/avatar2_img1.jpeg
/img/avatar2_img2.jpeg
/img/avatar2_img3.jpeg
/img/avatar2_img4.jpeg
/img/avatar2_img5.jpeg
/img/avatar_english.webp
/img/avatar_girl_1.png
/img/avatar_girl_2.webp
/img/avatar_girl_3.png
/img/avatar_girl_4.jpeg
/img/avatar_girl_5.webp
/img/avatar_girl_6.jpg
/img/avatar_girl_7.jpg
/img/avatar_history (Copy 2).webp
/img/avatar_history (Copy 3).webp
/img/avatar_history (Copy 4).webp
/img/avatar_history (Copy).webp
/img/avatar_history.webp
/img/avatar_img1.jpeg
/img/avatar_img2.jpeg
/img/avatar_img3.jpeg
/img/avatar_img4.jpeg
/img/avatar_img5.png
/img/avatar_img6.jpeg
/img/avatar_math.webp
/img/avatar_science.webp
/img/banner
/img/banner1.png
/img/banner2.png
/img/best_illust.svg
/img/bg-1.png
/img/bg-1.webp
/img/bg-2.png
/img/bg-2.webp
/img/bg-3.webp
/img/bg-A.png
/img/bg-A1.png
/img/bg-A2.png
/img/bg-B.png
/img/bg1.png
/img/bg2.png
/img/bg3.png
/img/bg4.png
/img/bg5.png
/img/coins-1.jpg
/img/coins-1.png
/img/coins-2.jpg
/img/coins-2.png
/img/coins-3.jpg
/img/coins-3.png
/img/coins-4.jpg
/img/coins-4.png
/img/ct-1.png
/img/default-character.png
/img/discover-top.png
/img/google_logo_neutral.png
/img/googleauth.png
/img/hato.png
/img/icon1.png
/img/icon2.png
/img/icon3.png
/img/image-placeholder-1.gif
/img/line_btn_base.png
/img/load-dot.gif
/img/login-bg-862c043f.png
/img/logo.png
/img/logo.webp
/img/logo1.png
/img/logo1.webp
/img/logo11.webp
/img/logo2.webp
/img/logo3.webp
/img/logo4.webp
/img/logo5.webp
/img/logo6.webp
/img/logo7.webp
/img/lp-b-2.png
/img/novita.jpg
/img/nsfw-blurred-1.jpg
/img/nsfw-blurred-2.png
/img/nsfw-blurred.jpg
/img/payment-methods
/img/pc_lg02.jpg
/img/pc_lg02_rotate.jpg
/img/placeholder-image-2.gif
/img/point1.png
/img/point2.png
/img/point3.png
/img/real.jpeg
/img/realistic.jpeg
/img/robot.png
/img/robot1.png
/img/sales
/img/sd.jpg
/img/share.png
/img/stripe-logo.png
/img/top-bg2.png
/img/top1.png
/img/wave.png
/img/wave.webp
/js
/manifest.json

Found on 2025-01-30 21:34

Severity: medium
Fingerprint: 5f32cf5d6962f09ce562b5bfe562b5bfc9a94177ed02513fe683883c5697ae4f

Found 115 files trough .DS_Store spidering:

/css
/img
/img/ai_avatar_1.jpeg
/img/ai_avatar_2.webp
/img/ai_avatar_3.webp
/img/ai_avatar_4.jpeg
/img/ai_avatar_5.jpeg
/img/ai_avatar_6.jpeg
/img/ai_avatar_7.jpeg
/img/ai_avatar_8.webp
/img/ai_avatar_9.jpeg
/img/anime.jpeg
/img/anime_realistic.jpeg
/img/arrow-down.gif
/img/avatar.png
/img/avatar2_img1.jpeg
/img/avatar2_img2.jpeg
/img/avatar2_img3.jpeg
/img/avatar2_img4.jpeg
/img/avatar2_img5.jpeg
/img/avatar_english.webp
/img/avatar_girl_1.png
/img/avatar_girl_2.webp
/img/avatar_girl_3.png
/img/avatar_girl_4.jpeg
/img/avatar_girl_5.webp
/img/avatar_girl_6.jpg
/img/avatar_girl_7.jpg
/img/avatar_history (Copy 2).webp
/img/avatar_history (Copy 3).webp
/img/avatar_history (Copy 4).webp
/img/avatar_history (Copy).webp
/img/avatar_history.webp
/img/avatar_img1.jpeg
/img/avatar_img2.jpeg
/img/avatar_img3.jpeg
/img/avatar_img4.jpeg
/img/avatar_img5.png
/img/avatar_img6.jpeg
/img/avatar_math.webp
/img/avatar_science.webp
/img/banner1.png
/img/banner2.png
/img/best_illust.svg
/img/bg-1.png
/img/bg-1.webp
/img/bg-2.png
/img/bg-2.webp
/img/bg-3.webp
/img/bg-A.png
/img/bg-A1.png
/img/bg-A2.png
/img/bg-B.png
/img/bg1.png
/img/bg2.png
/img/bg3.png
/img/bg4.png
/img/bg5.png
/img/coins-1.jpg
/img/coins-1.png
/img/coins-2.jpg
/img/coins-2.png
/img/coins-3.jpg
/img/coins-3.png
/img/coins-4.jpg
/img/coins-4.png
/img/ct-1.png
/img/default-character.png
/img/discover-top.png
/img/google_logo_neutral.png
/img/googleauth.png
/img/hato.png
/img/icon1.png
/img/icon2.png
/img/icon3.png
/img/image-placeholder-1.gif
/img/line_btn_base.png
/img/load-dot.gif
/img/login-bg-862c043f.png
/img/logo.png
/img/logo.webp
/img/logo1.png
/img/logo1.webp
/img/logo11.webp
/img/logo2.webp
/img/logo3.webp
/img/logo4.webp
/img/logo5.webp
/img/logo6.webp
/img/logo7.webp
/img/lp-b-2.png
/img/novita.jpg
/img/nsfw-blurred-1.jpg
/img/nsfw-blurred-2.png
/img/nsfw-blurred.jpg
/img/pc_lg02.jpg
/img/pc_lg02_rotate.jpg
/img/placeholder-image-2.gif
/img/point1.png
/img/point2.png
/img/point3.png
/img/real.jpeg
/img/realistic.jpeg
/img/robot.png
/img/robot1.png
/img/sales
/img/sd.jpg
/img/share.png
/img/stripe-logo.png
/img/top-bg2.png
/img/top1.png
/img/wave.png
/img/wave.webp
/js
/manifest.json

Found on 2025-01-18 21:45

Severity: medium
Fingerprint: 5f32cf5d6962f09c2f1697202f1697203092aab8bda360ac84a4fb015215719c

Found 116 files trough .DS_Store spidering:

/css
/img
/img/ai_avatar_1.jpeg
/img/ai_avatar_2.webp
/img/ai_avatar_3.webp
/img/ai_avatar_4.jpeg
/img/ai_avatar_5.jpeg
/img/ai_avatar_6.jpeg
/img/ai_avatar_7.jpeg
/img/ai_avatar_8.webp
/img/ai_avatar_9.jpeg
/img/anime.jpeg
/img/anime_realistic.jpeg
/img/arrow-down.gif
/img/avatar.png
/img/avatar2_img1.jpeg
/img/avatar2_img2.jpeg
/img/avatar2_img3.jpeg
/img/avatar2_img4.jpeg
/img/avatar2_img5.jpeg
/img/avatar_english.webp
/img/avatar_girl_1.png
/img/avatar_girl_2.webp
/img/avatar_girl_3.png
/img/avatar_girl_4.jpeg
/img/avatar_girl_5.webp
/img/avatar_girl_6.jpg
/img/avatar_girl_7.jpg
/img/avatar_history (Copy 2).webp
/img/avatar_history (Copy 3).webp
/img/avatar_history (Copy 4).webp
/img/avatar_history (Copy).webp
/img/avatar_history.webp
/img/avatar_img1.jpeg
/img/avatar_img2.jpeg
/img/avatar_img3.jpeg
/img/avatar_img4.jpeg
/img/avatar_img5.png
/img/avatar_img6.jpeg
/img/avatar_math.webp
/img/avatar_science.webp
/img/banner1.png
/img/banner2.png
/img/best_illust.svg
/img/bg-1.png
/img/bg-1.webp
/img/bg-2.png
/img/bg-2.webp
/img/bg-3.webp
/img/bg-A.png
/img/bg-A1.png
/img/bg-A2.png
/img/bg-B.png
/img/bg1.png
/img/bg2.png
/img/bg3.png
/img/bg4.png
/img/bg5.png
/img/coins-1.jpg
/img/coins-1.png
/img/coins-2.jpg
/img/coins-2.png
/img/coins-3.jpg
/img/coins-3.png
/img/coins-4.jpg
/img/coins-4.png
/img/ct-1.png
/img/default-character.png
/img/discover-top.png
/img/google_logo_neutral.png
/img/googleauth.png
/img/hato.png
/img/icon1.png
/img/icon2.png
/img/icon3.png
/img/image-placeholder-1.gif
/img/line_btn_base.png
/img/load-dot.gif
/img/login-bg-862c043f.png
/img/logo.png
/img/logo.webp
/img/logo1.png
/img/logo1.webp
/img/logo11.webp
/img/logo2.webp
/img/logo3.webp
/img/logo4.webp
/img/logo5.webp
/img/logo6.webp
/img/logo7.webp
/img/lp-b-2.png
/img/novita.jpg
/img/nsfw-blurred-1.jpg
/img/nsfw-blurred-2.png
/img/nsfw-blurred.jpg
/img/pc_lg02.jpg
/img/pc_lg02_rotate.jpg
/img/placeholder-image-2.gif
/img/point1.png
/img/point2.png
/img/point3.png
/img/real.jpeg
/img/realistic.jpeg
/img/robot.png
/img/robot1.png
/img/sales
/img/sd.jpg
/img/share.png
/img/stripe-logo.png
/img/top-bg2.png
/img/top1.png
/img/wave.png
/img/wave.webp
/js
/manifest.json
/output

Found on 2025-01-16 10:01

Severity: medium
Fingerprint: 5f32cf5d6962f09c2f1697202f1697203092aab8bda360ac84a4fb0141b4f026

Found 116 files trough .DS_Store spidering:

/css
/img
/img/ai_avatar_1.jpeg
/img/ai_avatar_2.webp
/img/ai_avatar_3.webp
/img/ai_avatar_4.jpeg
/img/ai_avatar_5.jpeg
/img/ai_avatar_6.jpeg
/img/ai_avatar_7.jpeg
/img/ai_avatar_8.webp
/img/ai_avatar_9.jpeg
/img/anime.jpeg
/img/anime_realistic.jpeg
/img/arrow-down.gif
/img/avatar.png
/img/avatar2_img1.jpeg
/img/avatar2_img2.jpeg
/img/avatar2_img3.jpeg
/img/avatar2_img4.jpeg
/img/avatar2_img5.jpeg
/img/avatar_english.webp
/img/avatar_girl_1.png
/img/avatar_girl_2.webp
/img/avatar_girl_3.png
/img/avatar_girl_4.jpeg
/img/avatar_girl_5.webp
/img/avatar_girl_6.jpg
/img/avatar_girl_7.jpg
/img/avatar_history (Copy 2).webp
/img/avatar_history (Copy 3).webp
/img/avatar_history (Copy 4).webp
/img/avatar_history (Copy).webp
/img/avatar_history.webp
/img/avatar_img1.jpeg
/img/avatar_img2.jpeg
/img/avatar_img3.jpeg
/img/avatar_img4.jpeg
/img/avatar_img5.png
/img/avatar_img6.jpeg
/img/avatar_math.webp
/img/avatar_science.webp
/img/banner1.png
/img/banner2.png
/img/best_illust.svg
/img/bg-1.png
/img/bg-1.webp
/img/bg-2.png
/img/bg-2.webp
/img/bg-3.webp
/img/bg-A.png
/img/bg-A1.png
/img/bg-A2.png
/img/bg-B.png
/img/bg1.png
/img/bg2.png
/img/bg3.png
/img/bg4.png
/img/bg5.png
/img/coins-1.jpg
/img/coins-1.png
/img/coins-2.jpg
/img/coins-2.png
/img/coins-3.jpg
/img/coins-3.png
/img/coins-4.jpg
/img/coins-4.png
/img/ct-1.png
/img/default-character.png
/img/discover-top.png
/img/google_logo_neutral.png
/img/googleauth.png
/img/hato.png
/img/icon1.png
/img/icon2.png
/img/icon3.png
/img/image-placeholder-1.gif
/img/image-placeholder-2.gif
/img/line_btn_base.png
/img/load-dot.gif
/img/login-bg-862c043f.png
/img/logo.png
/img/logo.webp
/img/logo1.png
/img/logo1.webp
/img/logo11.webp
/img/logo2.webp
/img/logo3.webp
/img/logo4.webp
/img/logo5.webp
/img/logo6.webp
/img/logo7.webp
/img/lp-b-2.png
/img/novita.jpg
/img/nsfw-blurred-1.jpg
/img/nsfw-blurred-2.png
/img/nsfw-blurred.jpg
/img/pc_lg02.jpg
/img/pc_lg02_rotate.jpg
/img/point1.png
/img/point2.png
/img/point3.png
/img/real.jpeg
/img/realistic.jpeg
/img/robot.png
/img/robot1.png
/img/sales
/img/sd.jpg
/img/share.png
/img/stripe-logo.png
/img/top-bg2.png
/img/top1.png
/img/wave.png
/img/wave.webp
/js
/manifest.json
/output

Found on 2024-12-28 17:19

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: igao-uat.michiganlottery.com
Port: 443
URL: https://igao-uat.michiganlottery.com

First seen 2025-12-04 00:55
Last seen 2026-01-02 12:27
Open for 29 days

Severity: medium
Fingerprint: c2db3a1c40d490db84e0e3509d37f2533df59c11cdb15f9ad3d04b33057724f3

GraphQL introspection enabled at /api
Types: 248 (by kind: ENUM: 19, INPUT_OBJECT: 17, INTERFACE: 3, OBJECT: 198, SCALAR: 8, UNION: 3)
Operations:
- Query: Query | fields: allBigWinnerGameNames, bigWinners, getTicketScannerBanner, isApolloServerReady, promotionalBannerHomePage
- Mutation: Mutation | fields: addFavorite, recordAction, removeFavorite, syncPlayer, whatAmI
Directives: cacheControl, deprecated, include, oneOf, skip, specifiedBy (total: 6)

Found on 2026-01-02 12:27

281.6 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db84e0e350a1c6261bd6b96f59921ba9127722a88be9656d7b

GraphQL introspection enabled at /api
Types: 247 (by kind: ENUM: 19, INPUT_OBJECT: 17, INTERFACE: 3, OBJECT: 197, SCALAR: 8, UNION: 3)
Operations:
- Query: Query | fields: allBigWinnerGameNames, bigWinners, getTicketScannerBanner, isApolloServerReady, promotionalBannerHomePage
- Mutation: Mutation | fields: addFavorite, recordAction, removeFavorite, syncPlayer, whatAmI
Directives: cacheControl, deprecated, include, oneOf, skip, specifiedBy (total: 6)

Found on 2025-12-18 16:35

280.9 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db84e0e350b9e10ae9207d7dcbef5ddd904b2cce6917de055d

GraphQL introspection enabled at /api
Types: 237 (by kind: ENUM: 18, INPUT_OBJECT: 17, INTERFACE: 3, OBJECT: 188, SCALAR: 8, UNION: 3)
Operations:
- Query: Query | fields: allBigWinnerGameNames, bigWinners, getTicketScannerBanner, isApolloServerReady, promotionalBannerHomePage
- Mutation: Mutation | fields: addFavorite, recordAction, removeFavorite, syncPlayer, whatAmI
Directives: cacheControl, deprecated, include, oneOf, skip, specifiedBy (total: 6)

Found on 2025-12-04 00:55

270.0 kBytes

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: www.food-shop-api.store
Port: 443
URL: https://www.food-shop-api.store

First seen 2025-11-02 01:18
Last seen 2026-01-02 12:23
Open for 61 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa38fde5a216ebe3ce384791ee28d01e117f2cc7a36

GraphQL introspection enabled at /graphql
Types: 87 (by kind: ENUM: 11, INPUT_OBJECT: 26, OBJECT: 43, SCALAR: 7)
Operations:
- Query: Query | fields: discountCodeGet, getAccount, searchContact, signIn, signInRestorer
- Mutation: Mutation | fields: accountActivate, addAccountAddress, createAccount, forgetPassword, passwordGenerate
- Subscription: Subscription | fields: orderNotification, orderPaid
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2026-01-02 12:23

139.7 kBytes

Create report

GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: demo-api.volo.team
Port: 443
URL: https://demo-api.volo.team

First seen 2025-10-19 00:59
Last seen 2026-01-02 12:19
Open for 75 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa32b8e4e0fbcd8c81d0373d880f95f9232c8857744
```
GraphQL introspection enabled at /graphql
Types: 84 (by kind: ENUM: 12, INPUT_OBJECT: 32, OBJECT: 29, SCALAR: 8, UNION: 3)
Operations:
- Query: Query | fields: getCycles, getJobTitles, getOrganization, getTeam, getTeams
- Mutation: Mutation | fields: createJobTitle, createTeam, deleteJobTitle, updateJobTitle, updateTeam
Directives: deprecated, include, skip, specifiedBy (total: 4)
```
  Found on 2026-01-02 12:19
  
  104.0 kBytes
Create report
GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: portal.officetenders.com
Port: 443
URL: https://portal.officetenders.com

First seen 2025-12-05 10:16
Last seen 2026-01-02 12:18
Open for 28 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa39f156cb0b6370b348af2de09d5fffc447d85a0be
```
GraphQL introspection enabled at /graphql
Types: 191 (by kind: ENUM: 17, INPUT_OBJECT: 92, INTERFACE: 1, OBJECT: 74, SCALAR: 7)
Operations:
- Query: Query | fields: allAnnualSupervisorReviews, allUsers, node, nodeId, query
- Mutation: Mutation | fields: createAnnualSupervisorReview, createCompany, createDriversLicense, createDrugPolicy, createUser
Directives: deprecated, include, skip, specifiedBy (total: 4)
```
  Found on 2026-01-02 12:18
  
  267.6 kBytes
Create report
GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: staging.bailfundapp.org
Port: 443
URL: https://staging.bailfundapp.org

First seen 2025-11-12 00:23
Last seen 2026-01-02 12:02
Open for 51 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa3ba4c71803ae89744cb11c09ff196c30fa663c3d3
```
GraphQL introspection enabled at /graphql
Types: 117 (by kind: ENUM: 15, INPUT_OBJECT: 45, OBJECT: 51, SCALAR: 6)
Operations:
- Query: Queries | fields: documents, duplicateQueryResults, listUsers, organization, userInfo
- Mutation: Mutations | fields: createView, deleteView, updateFlags, updateUserData, updateView
Directives: include, skip (total: 2)
```
  Found on 2026-01-02 12:02
  
  125.8 kBytes
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa3
```
GraphQL introspection enabled at /graphql
```
  Found on 2025-11-12 00:23
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 75.2.60.68
Domain: dashboard-stg.estock.solutions
Port: 443
URL: https://dashboard-stg.estock.solutions

First seen 2025-11-23 18:28
Last seen 2026-01-02 11:56
Open for 39 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c4239b3d84239b3d808c457e038380c8eb89a7f078a3f6047
```
Found 8 files trough .DS_Store spidering:

/favicon.ico
/index.html
/logo.png
/logo.svg
/logo192.png
/logo512.png
/manifest.json
/robots.txt
```
  Found on 2026-01-02 11:56
Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: app.staging.fanneeds.net
Port: 443
URL: https://app.staging.fanneeds.net

First seen 2025-11-12 03:33
Last seen 2026-01-02 11:53
Open for 51 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa31b124c76afb0f566cb3b0499e75e9cc1496d30d8

GraphQL introspection enabled at /graphql
Types: 345 (by kind: ENUM: 21, INPUT_OBJECT: 112, OBJECT: 201, SCALAR: 9, UNION: 2)
Operations:
- Query: Query | fields: allergenTags, availabilities, availability, categories, category
- Mutation: Mutation | fields: cancelPaymentIntent, closeTable, completePaymentIntent, confirmOrder, createAvailability
- Subscription: Subscription | fields: discountUpdated, employeeByRestaurant, extendedMenuItemOverridesByRestaurant, kdsInfoByRestaurant, menuItemOverridesByRestaurant
Directives: deprecated, include, oneOf, skip (total: 4)

Found on 2026-01-02 11:53

453.3 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa3
```
GraphQL introspection enabled at /graphql
```
Found on 2025-11-27 17:46

Create report

GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: www.sthinds.info
Port: 80
URL: http://www.sthinds.info

First seen 2025-12-12 00:57
Last seen 2026-01-02 11:50
Open for 21 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa310e13faa34aefc9a9860ff0d7f498a289bef9e0e
```
GraphQL introspection enabled at /graphql
Types: 16 (by kind: ENUM: 2, INPUT_OBJECT: 2, OBJECT: 10, SCALAR: 2)
Operations:
- Query: Query | fields: article, articles, author, user, users
- Mutation: Mutation | fields: createArticle, createUser, deleteArticle, patchArticle, patchUser
Directives: deprecated, include, skip, specifiedBy (total: 4)

Readable stores: 0
```
  Found on 2026-01-02 11:50
  
  27.4 kBytes
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 75.2.60.68
Domain: jasmine.956.jp
Port: 443
URL: https://jasmine.956.jp

First seen 2025-02-23 00:14
Last seen 2026-01-02 11:38
Open for 313 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c7cf176427cf176422fd64dcacae73153cae73153cae73153
```
Found 2 files trough .DS_Store spidering:

/esthe
/esthe/images
```
  Found on 2026-01-02 11:38
Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 99.83.220.108
Domain: stg-bff.weschools.we.org
Port: 443
URL: https://stg-bff.weschools.we.org

First seen 2025-11-18 01:29
Last seen 2026-01-02 11:36
Open for 45 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa39563946f31f9df3d5190f063c00b52658d6d0e06

GraphQL introspection enabled at /graphql
Types: 78 (by kind: ENUM: 7, INPUT_OBJECT: 4, INTERFACE: 2, OBJECT: 60, SCALAR: 4, UNION: 1)
Operations:
- Query: Query | fields: _empty, filterPage, page, searchPage, settings
- Mutation: Mutation | fields: _empty, updateFormState, updateLocationDetails, updateRating
Directives: deprecated, include, skip (total: 3)

Readable stores: 2
settings (args: none) : id=459f063d-a13b-435a-80ee-e6165a933562 ratingFormId=4214648
ratingForm (args: none) : formSubmitButtonText=SUBMIT formSubmittedHeader=Thanks for rating! formSubmittedBodyText=Your feedback is helpful to continuously improve our resources! formDismissButtonText=CLOSE id=3e176d87-0cc6-4198-81dc-11bbaa2080d5 formId=4214648 formHeader=Rate this resource

Found on 2026-01-02 11:36

209.6 kBytes 9 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa39563946f31f9df3d5190f063c00b526570c77b38

GraphQL introspection enabled at /graphql
Types: 78 (by kind: ENUM: 7, INPUT_OBJECT: 4, INTERFACE: 2, OBJECT: 60, SCALAR: 4, UNION: 1)
Operations:
- Query: Query | fields: _empty, filterPage, page, searchPage, settings
- Mutation: Mutation | fields: _empty, updateFormState, updateLocationDetails, updateRating
Directives: deprecated, include, skip (total: 3)

Readable stores: 2
settings (args: none) : ratingFormId=4214648 id=459f063d-a13b-435a-80ee-e6165a933562
ratingForm (args: none) : formDismissButtonText=CLOSE id=3e176d87-0cc6-4198-81dc-11bbaa2080d5 formId=4214648 formHeader=Rate this resource formSubmitButtonText=SUBMIT formSubmittedHeader=Thanks for rating! formSubmittedBodyText=Your feedback is helpful to continuously improve our resources!

Found on 2025-12-24 19:09

209.6 kBytes 9 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa39563946f31f9df3d5190f063c00b5265c8c4510a

GraphQL introspection enabled at /graphql
Types: 78 (by kind: ENUM: 7, INPUT_OBJECT: 4, INTERFACE: 2, OBJECT: 60, SCALAR: 4, UNION: 1)
Operations:
- Query: Query | fields: _empty, filterPage, page, searchPage, settings
- Mutation: Mutation | fields: _empty, updateFormState, updateLocationDetails, updateRating
Directives: deprecated, include, skip (total: 3)

Readable stores: 2
settings (args: none) : id=459f063d-a13b-435a-80ee-e6165a933562 ratingFormId=4214648
ratingForm (args: none) : formId=4214648 formHeader=Rate this resource formSubmitButtonText=SUBMIT formSubmittedHeader=Thanks for rating! formSubmittedBodyText=Your feedback is helpful to continuously improve our resources! formDismissButtonText=CLOSE id=3e176d87-0cc6-4198-81dc-11bbaa2080d5

Found on 2025-12-21 00:04

209.6 kBytes 9 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa39563946f31f9df3d5190f063c00b526588d29d1e

GraphQL introspection enabled at /graphql
Types: 78 (by kind: ENUM: 7, INPUT_OBJECT: 4, INTERFACE: 2, OBJECT: 60, SCALAR: 4, UNION: 1)
Operations:
- Query: Query | fields: _empty, filterPage, page, searchPage, settings
- Mutation: Mutation | fields: _empty, updateFormState, updateLocationDetails, updateRating
Directives: deprecated, include, skip (total: 3)

Readable stores: 2
settings (args: none) : id=459f063d-a13b-435a-80ee-e6165a933562 ratingFormId=4214648
ratingForm (args: none) : id=3e176d87-0cc6-4198-81dc-11bbaa2080d5 formId=4214648 formHeader=Rate this resource formSubmitButtonText=SUBMIT formSubmittedHeader=Thanks for rating! formSubmittedBodyText=Your feedback is helpful to continuously improve our resources! formDismissButtonText=CLOSE

Found on 2025-12-18 23:33

209.6 kBytes 9 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa39563946f31f9df3d5190f063c00b52653967b946

GraphQL introspection enabled at /graphql
Types: 78 (by kind: ENUM: 7, INPUT_OBJECT: 4, INTERFACE: 2, OBJECT: 60, SCALAR: 4, UNION: 1)
Operations:
- Query: Query | fields: _empty, filterPage, page, searchPage, settings
- Mutation: Mutation | fields: _empty, updateFormState, updateLocationDetails, updateRating
Directives: deprecated, include, skip (total: 3)

Readable stores: 2
settings (args: none) : id=459f063d-a13b-435a-80ee-e6165a933562 ratingFormId=4214648
ratingForm (args: none) : formSubmittedHeader=Thanks for rating! formSubmittedBodyText=Your feedback is helpful to continuously improve our resources! formDismissButtonText=CLOSE id=3e176d87-0cc6-4198-81dc-11bbaa2080d5 formId=4214648 formHeader=Rate this resource formSubmitButtonText=SUBMIT

Found on 2025-12-16 20:17

209.6 kBytes 9 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa39563946f31f9df3d5190f063c00b5265801894ce

GraphQL introspection enabled at /graphql
Types: 78 (by kind: ENUM: 7, INPUT_OBJECT: 4, INTERFACE: 2, OBJECT: 60, SCALAR: 4, UNION: 1)
Operations:
- Query: Query | fields: _empty, filterPage, page, searchPage, settings
- Mutation: Mutation | fields: _empty, updateFormState, updateLocationDetails, updateRating
Directives: deprecated, include, skip (total: 3)

Readable stores: 2
settings (args: none) : id=459f063d-a13b-435a-80ee-e6165a933562 ratingFormId=4214648
ratingForm (args: none) : formDismissButtonText=CLOSE id=3e176d87-0cc6-4198-81dc-11bbaa2080d5 formId=4214648 formHeader=Rate this resource formSubmitButtonText=SUBMIT formSubmittedHeader=Thanks for rating! formSubmittedBodyText=Your feedback is helpful to continuously improve our resources!

Found on 2025-12-10 08:38

209.6 kBytes 9 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa39563946f31f9df3d5190f063c00b52659f717a72

GraphQL introspection enabled at /graphql
Types: 78 (by kind: ENUM: 7, INPUT_OBJECT: 4, INTERFACE: 2, OBJECT: 60, SCALAR: 4, UNION: 1)
Operations:
- Query: Query | fields: _empty, filterPage, page, searchPage, settings
- Mutation: Mutation | fields: _empty, updateFormState, updateLocationDetails, updateRating
Directives: deprecated, include, skip (total: 3)

Readable stores: 2
settings (args: none) : id=459f063d-a13b-435a-80ee-e6165a933562 ratingFormId=4214648
ratingForm (args: none) : formSubmittedBodyText=Your feedback is helpful to continuously improve our resources! formDismissButtonText=CLOSE id=3e176d87-0cc6-4198-81dc-11bbaa2080d5 formId=4214648 formHeader=Rate this resource formSubmitButtonText=SUBMIT formSubmittedHeader=Thanks for rating!

Found on 2025-11-23 00:45

209.6 kBytes 9 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa39563946f31f9df3d5190f063c00b5265b7f13a66

GraphQL introspection enabled at /graphql
Types: 78 (by kind: ENUM: 7, INPUT_OBJECT: 4, INTERFACE: 2, OBJECT: 60, SCALAR: 4, UNION: 1)
Operations:
- Query: Query | fields: _empty, filterPage, page, searchPage, settings
- Mutation: Mutation | fields: _empty, updateFormState, updateLocationDetails, updateRating
Directives: deprecated, include, skip (total: 3)

Readable stores: 2
settings (args: none) : id=459f063d-a13b-435a-80ee-e6165a933562 ratingFormId=4214648
ratingForm (args: none) : formHeader=Rate this resource formSubmitButtonText=SUBMIT formSubmittedHeader=Thanks for rating! formSubmittedBodyText=Your feedback is helpful to continuously improve our resources! formDismissButtonText=CLOSE id=3e176d87-0cc6-4198-81dc-11bbaa2080d5 formId=4214648

Found on 2025-11-18 01:29

209.6 kBytes 9 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa39563946f31f9df3d5190f063c00b526563cfd390

GraphQL introspection enabled at /graphql
Types: 78 (by kind: ENUM: 7, INPUT_OBJECT: 4, INTERFACE: 2, OBJECT: 60, SCALAR: 4, UNION: 1)
Operations:
- Query: Query | fields: _empty, filterPage, page, searchPage, settings
- Mutation: Mutation | fields: _empty, updateFormState, updateLocationDetails, updateRating
Directives: deprecated, include, skip (total: 3)

Readable stores: 2
settings (args: none) : ratingFormId=4214648 id=459f063d-a13b-435a-80ee-e6165a933562
ratingForm (args: none) : formSubmitButtonText=SUBMIT formSubmittedHeader=Thanks for rating! formSubmittedBodyText=Your feedback is helpful to continuously improve our resources! formDismissButtonText=CLOSE id=3e176d87-0cc6-4198-81dc-11bbaa2080d5 formId=4214648 formHeader=Rate this resource

Found on 2025-11-18 01:29

209.6 kBytes 9 rows

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: api.tapkat.dev
Port: 443
URL: https://api.tapkat.dev

First seen 2025-11-20 00:42
Last seen 2026-01-02 11:24
Open for 43 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ed49c27f8449ae4d2dce695381bb4eeb28d42003

GraphQL introspection enabled at /graphql
Types: 75 (by kind: ENUM: 3, INPUT_OBJECT: 7, OBJECT: 54, SCALAR: 11)
Operations:
- Query: Query | fields: accountApplication, blogPosts, invitation, nonprofitSearch, promoCode
- Mutation: Mutation | fields: acceptInvitation, applyForAccount, createAccount, createMailinTicketRequest, encryptData
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2026-01-02 11:24

89.8 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3966094b3c544f7b12267fec7db0cc5b79034ef0f

GraphQL introspection enabled at /graphql
Types: 76 (by kind: ENUM: 3, INPUT_OBJECT: 7, OBJECT: 55, SCALAR: 11)
Operations:
- Query: Query | fields: accountApplication, blogPosts, invitation, nonprofitSearch, promoCode
- Mutation: Mutation | fields: acceptInvitation, applyForAccount, createAccount, createMailinTicketRequest, encryptData
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2025-12-22 15:12

91.2 kBytes

Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 75.2.60.68
Domain: grubgrab.net
Port: 80
URL: http://grubgrab.net

First seen 2025-12-07 01:49
Last seen 2026-01-02 11:17
Open for 26 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-01-02 11:17
Create report
GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 99.83.220.108
Domain: cms.tattoogallery.com.au
Port: 443
URL: https://cms.tattoogallery.com.au

First seen 2025-10-23 00:02
Last seen 2026-01-02 11:17
Open for 71 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa363a5cf320752f4c29a1b7f71a3950998ce61b00a
```
GraphQL introspection enabled at /graphql
Types: 167 (by kind: ENUM: 3, INPUT_OBJECT: 38, OBJECT: 114, SCALAR: 11, UNION: 1)
Operations:
- Query: Query | fields: aftercare, artist, artists, artistsConnection, faqDatum
- Mutation: Mutation | fields: createArtist, deleteAftercare, deleteArtist, updateAftercare, updateArtist
Directives: deprecated, include, skip, specifiedBy (total: 4)
```
  Found on 2026-01-02 11:17
  
  148.9 kBytes
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa3
```
GraphQL introspection enabled at /graphql
```
  Found on 2025-10-23 00:02
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 13.248.244.96
Domain: www.ec.comoly.jp
Port: 443
URL: https://www.ec.comoly.jp

First seen 2025-05-28 01:27
Last seen 2026-01-02 11:10
Open for 219 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c7cf176427cf176423f3e94dee53e19e1e53e19e1e53e19e1
```
Found 2 files trough .DS_Store spidering:

/assets
/uploads
```
  Found on 2026-01-02 11:10
- Severity: low
  Fingerprint: 5f32cf5d6962f09cdafa5447dafa5447b671e3e95092313e83e9d9a3be1e68f2
```
Found 18 files trough .DS_Store spidering:

/assets
/uploads
/uploads/item_image
/uploads/item_image/image
/uploads/item_image/image/1
/uploads/item_image/image/2
/uploads/item_image/image/3
/uploads/item_image/image/4
/uploads/product
/uploads/product/product_image
/uploads/product/product_image/1
/uploads/product/product_image/2
/uploads/tmp
/uploads/tmp/1695626173-450992166375541-0001-0685
/uploads/tmp/1696404755-253954344917405-0001-1507
/uploads/tmp/1696404776-997569988427667-0002-5843
/uploads/tmp/1696404813-353664039788471-0003-9337
/uploads/worker
```
  Found on 2025-08-27 00:58
Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: api.staging.agoratutoring.com
Port: 443
URL: https://api.staging.agoratutoring.com

First seen 2025-12-07 01:35
Last seen 2026-01-02 11:04
Open for 26 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3f0431ad004efb814e2986b014cfdc841fc996d87

GraphQL introspection enabled at /graphql
Types: 131 (by kind: ENUM: 6, INPUT_OBJECT: 41, INTERFACE: 3, OBJECT: 72, SCALAR: 9)
Operations:
- Query: Query | fields: allPins, allPosts, chat, coordinates, payments
- Mutation: Mutation | fields: createChat, createMessage, leaveChat, readChat, sendDonation
- Subscription: Subscription | fields: chatCreated, chatUpdated, messageCreated, messageUpdated
Directives: auth, cursor, deprecated, include, oneOf, skip, specifiedBy (total: 7)

Found on 2026-01-02 11:04

113.0 kBytes

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 75.2.60.68
Domain: missionaustralia.prensa.com.au
Port: 80
URL: http://missionaustralia.prensa.com.au

First seen 2025-11-19 07:05
Last seen 2026-01-02 10:54
Open for 44 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9d325beceb325beceb325beceb325beceb
```
Found 1 files trough .DS_Store spidering:

/assets
```
  Found on 2026-01-02 10:54
Create report
GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: dev-api.prescient-ai.io
Port: 443
URL: https://dev-api.prescient-ai.io

First seen 2025-11-07 00:16
Last seen 2026-01-02 10:53
Open for 56 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa35466a4370e7cb9a5a333c963d1a9bd8bd1a9bd8b
```
GraphQL introspection enabled at /graphql
Types: 23 (by kind: ENUM: 4, OBJECT: 13, SCALAR: 6)
Operations:
- Query: Query | fields: channelNames, modeledMetricTimeSeries, modeledMetrics, models
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)
```
  Found on 2026-01-02 10:53
  
  31.8 kBytes
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 75.2.60.68
Domain: www.starlens.ai
Port: 443
URL: https://www.starlens.ai

First seen 2025-01-28 15:10
Last seen 2026-01-02 10:53
Open for 338 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c9e04c3bc9e04c3bc9ec123895e991b4086abea73cf1ac0b7
```
Found 22 files trough .DS_Store spidering:

/Ads.txt
/blog
/celeb_rec_app
/celeb_rec_app/management
/celeb_rec_app/management/commands
/celeb_rec_project
/celebrity_recognition_model.h5
/db.sqlite3
/db_load_files
/ignore.txt
/manage.py
/media
/model_output
/Procfile
/requirements.txt
/runtime.txt
/Starlens_Actor_Images
/static
/static/images
/templates
/test.py
/validation
```
  Found on 2026-01-02 10:53
- Severity: low
  Fingerprint: 5f32cf5d6962f09cab28146bab28146b189b40e62b64661537d55c92c1bbdae6
```
Found 21 files trough .DS_Store spidering:

/Ads.txt
/blog
/celeb_rec_app
/celeb_rec_app/management
/celeb_rec_app/management/commands
/celeb_rec_project
/celebrity_recognition_model.h5
/db.sqlite3
/db_load_files
/ignore.txt
/manage.py
/media
/model_output
/Procfile
/requirements.txt
/runtime.txt
/Starlens_Actor_Images
/static
/templates
/test.py
/validation
```
  Found on 2025-11-07 01:01
- Severity: low
  Fingerprint: 5f32cf5d6962f09c7cf176427cf176428b8bb33b9a8e33b99a8e33b99a8e33b9
```
Found 2 files trough .DS_Store spidering:

/static
/static/images
```
  Found on 2025-02-04 09:03
Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 99.83.220.108
Domain: dashboard.fluentc.ai
Port: 443
URL: https://dashboard.fluentc.ai

First seen 2025-11-24 03:17
Last seen 2026-01-02 10:47
Open for 39 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de95f08c0e9

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=9 status=ok timestamp=2026-01-02T10:47:34Z

Found on 2026-01-02 10:47

71.7 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de981511105

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=47 status=ok timestamp=2025-12-26T15:04:00Z

Found on 2025-12-26 15:03

72.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de91b94612c

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=145 status=ok timestamp=2025-12-24T16:14:04Z

Found on 2025-12-24 16:14

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de9002ed334

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=358 status=ok timestamp=2025-12-22T19:03:27Z languagesCount=189

Found on 2025-12-22 19:03

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de9c5f6a213

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : status=ok timestamp=2025-12-20T20:46:48Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=9

Found on 2025-12-20 20:46

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de93dfdef42

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=66 status=ok timestamp=2025-12-18T17:16:11Z

Found on 2025-12-18 17:16

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de99e945820

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=56 status=ok timestamp=2025-12-16T13:42:51Z

Found on 2025-12-16 13:42

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de9ea1b7486

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=63 status=ok timestamp=2025-12-12T18:40:34Z

Found on 2025-12-12 18:40

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de91ee89f8d

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=40 status=ok timestamp=2025-12-10T23:11:50Z languagesCount=189

Found on 2025-12-10 23:11

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de9888bcf1a

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=56 status=ok timestamp=2025-11-30T13:40:14Z languagesCount=189

Found on 2025-11-30 13:39

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de9c8a2cf44

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : status=ok timestamp=2025-11-28T10:51:46Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=51

Found on 2025-11-28 10:51

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de96b62287c

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=39 status=ok timestamp=2025-11-26T11:33:36Z languagesCount=189

Found on 2025-11-26 11:33

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de951d11995

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=33 status=ok timestamp=2025-11-24T03:17:05Z

Found on 2025-11-24 03:17

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de96c8150e0

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : timestamp=2025-11-24T03:17:05Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=36 status=ok

Found on 2025-11-24 03:17

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de9a3f4a22b

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : responseTimeMs=35 status=ok timestamp=2025-11-24T03:17:05Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip]

Found on 2025-11-24 03:17

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de91506240f

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : responseTimeMs=32 status=ok timestamp=2025-11-24T03:17:06Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip]

Found on 2025-11-24 03:17

71.1 kBytes 5 rows

Create report

GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: bo.fleetpanda.com
Port: 443
URL: https://bo.fleetpanda.com

First seen 2025-11-26 00:41
Last seen 2026-01-02 10:35
Open for 37 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa3
```
GraphQL introspection enabled at /graphql
```
  Found on 2026-01-02 10:35
Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 35.71.179.82
Domain: api.staging.nickelpayments.com
Port: 80
URL: http://api.staging.nickelpayments.com

First seen 2025-11-10 01:41
Last seen 2026-01-02 10:15
Open for 53 days

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d690cd2a5d41c4c93f6d7c045b8fd4a207761ecf6b

GraphQL introspection enabled at /api/graphql
Types: 381 (by kind: ENUM: 27, INPUT_OBJECT: 27, OBJECT: 320, SCALAR: 7)
Operations:
- Query: Query | fields: creditApplication, customers, organization, user, webhooks
- Mutation: Mutation | fields: onboardingCreatePayoutMethod, sendTwoFactorVerificationCodeViaSMS, signup, updateOnboardingInformation, verifyTwoFactorSMSAuthCode
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 0

Found on 2026-01-02 10:15

456.0 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d636b97f9fd9cbe82d9f182b31189ddb4524ef1211

GraphQL introspection enabled at /api/graphql
Types: 380 (by kind: ENUM: 26, INPUT_OBJECT: 27, OBJECT: 320, SCALAR: 7)
Operations:
- Query: Query | fields: creditApplication, customers, organization, user, webhooks
- Mutation: Mutation | fields: onboardingCreatePayoutMethod, sendTwoFactorVerificationCodeViaSMS, signup, updateOnboardingInformation, verifyTwoFactorSMSAuthCode
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 0

Found on 2025-12-12 17:07

455.2 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d6a65d8aef520006bd45a2cf612582c275257f7da1

GraphQL introspection enabled at /api/graphql
Types: 379 (by kind: ENUM: 26, INPUT_OBJECT: 27, OBJECT: 319, SCALAR: 7)
Operations:
- Query: Query | fields: creditApplication, customers, organization, user, webhooks
- Mutation: Mutation | fields: onboardingCreatePayoutMethod, sendTwoFactorVerificationCodeViaSMS, signup, updateOnboardingInformation, verifyTwoFactorSMSAuthCode
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 0

Found on 2025-11-30 19:32

454.1 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d6a4e5c25739f61d8502244f49aa61522d668d8159

GraphQL introspection enabled at /api/graphql
Types: 378 (by kind: ENUM: 25, INPUT_OBJECT: 27, OBJECT: 319, SCALAR: 7)
Operations:
- Query: Query | fields: creditApplication, customers, organization, user, webhooks
- Mutation: Mutation | fields: onboardingCreatePayoutMethod, sendTwoFactorVerificationCodeViaSMS, signup, updateOnboardingInformation, verifyTwoFactorSMSAuthCode
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 0

Found on 2025-11-26 18:49

452.2 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d6ce8669677c410f55eb2e90397c017f5d7882bca9

GraphQL introspection enabled at /api/graphql
Types: 374 (by kind: ENUM: 24, INPUT_OBJECT: 27, OBJECT: 316, SCALAR: 7)
Operations:
- Query: Query | fields: creditApplication, customers, organization, user, webhooks
- Mutation: Mutation | fields: onboardingCreatePayoutMethod, sendTwoFactorVerificationCodeViaSMS, signup, updateOnboardingInformation, verifyTwoFactorSMSAuthCode
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 0

Found on 2025-11-25 01:14

449.5 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d6ad480f8f4b16889de83752814a4174951f0da9c1

GraphQL introspection enabled at /api/graphql
Types: 372 (by kind: ENUM: 23, INPUT_OBJECT: 27, OBJECT: 315, SCALAR: 7)
Operations:
- Query: Query | fields: creditApplication, customers, organization, user, webhooks
- Mutation: Mutation | fields: onboardingCreatePayoutMethod, sendTwoFactorVerificationCodeViaSMS, signup, updateOnboardingInformation, verifyTwoFactorSMSAuthCode
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 0

Found on 2025-11-23 07:55

448.0 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d67d4ec50e29df55fe63590576983a944078e27028

GraphQL introspection enabled at /api/graphql
Types: 369 (by kind: ENUM: 22, INPUT_OBJECT: 27, OBJECT: 313, SCALAR: 7)
Operations:
- Query: Query | fields: creditApplication, customer, customers, organization, user
- Mutation: Mutation | fields: onboardingCreatePayoutMethod, sendTwoFactorVerificationCodeViaSMS, signup, updateOnboardingInformation, verifyTwoFactorSMSAuthCode
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 0

Found on 2025-11-21 13:00

446.2 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d67d4ec50e29df55fe63590576983a9440eeab39f6

GraphQL introspection enabled at /api/graphql
Types: 369 (by kind: ENUM: 22, INPUT_OBJECT: 27, OBJECT: 313, SCALAR: 7)
Operations:
- Query: Query | fields: creditApplication, customer, customers, organization, user
- Mutation: Mutation | fields: onboardingCreatePayoutMethod, sendTwoFactorVerificationCodeViaSMS, signup, updateOnboardingInformation, verifyTwoFactorSMSAuthCode
Directives: deprecated, include, skip, specifiedBy (total: 4)

Readable stores: 0

Found on 2025-11-16 21:13

445.8 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d616071e5e9c83ccce2456d4a65123c970218a77a6

GraphQL introspection enabled at /api/graphql
Types: 368 (by kind: ENUM: 22, INPUT_OBJECT: 27, OBJECT: 312, SCALAR: 7)
Operations:
- Query: Query | fields: creditApplication, customer, customers, organization, user
- Mutation: Mutation | fields: onboardingCreatePayoutMethod, sendTwoFactorVerificationCodeViaSMS, signup, updateOnboardingInformation, verifyTwoFactorSMSAuthCode
Directives: deprecated, include, skip, specifiedBy (total: 4)

Readable stores: 0

Found on 2025-11-12 20:50

444.9 kBytes

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: api.alchemi.ai
Port: 80
URL: http://api.alchemi.ai

First seen 2025-10-27 00:40
Last seen 2026-01-02 10:00
Open for 67 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa35d5d12b43e0669383d64db8b24eb646de5a399b9

GraphQL introspection enabled at /graphql
Types: 83 (by kind: ENUM: 12, INPUT_OBJECT: 18, OBJECT: 48, SCALAR: 5)
Operations:
- Query: Query | fields: accountOverview, adminAllConnectAccount, adminAllUser, adminTasks, adminUserInfo
- Mutation: Mutation | fields: activateContentDistributionSanity, activateContentDistributionShopify, activateContentDistributionWebflow, activateContentDistributionWordpress, activateLink
Directives: deprecated, include, skip, specifiedBy (total: 4)

Found on 2026-01-02 10:00

128.2 kBytes

Create report

GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: en.bossaz-pr-1260.azstage.in
Port: 443
URL: https://en.bossaz-pr-1260.azstage.in

First seen 2025-11-19 09:33
Last seen 2026-01-02 09:55
Open for 44 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa30bc0e5a9823b5b0b91eee8a9ca714fe7e733bfbf
```
GraphQL introspection enabled at /graphql
Types: 127 (by kind: ENUM: 22, INPUT_OBJECT: 21, INTERFACE: 2, OBJECT: 70, SCALAR: 10, UNION: 2)
Operations:
- Query: Query | fields: balanceHistory, bookmarks, categories, company, draftResume
- Mutation: Mutation | fields: adContact, createBookmark, createContactEmail, createInvoice, createPayment
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)
```
  Found on 2026-01-02 09:55
  
  141.5 kBytes
Create report
GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: data.ae.studio
Port: 443
URL: https://data.ae.studio

First seen 2025-12-05 00:48
Last seen 2026-01-02 09:53
Open for 28 days
- Severity: medium
  Fingerprint: c2db3a1c40d490dbf8cbe7e2b444ada86353088c0125b752b8773364b8773364
```
GraphQL introspection enabled at /graphql/api
Types: 39 (by kind: ENUM: 3, INPUT_OBJECT: 16, OBJECT: 16, SCALAR: 4)
Operations:
- Query: Query | fields: people, person, project, projects, timeEntry
Directives: deprecated, include, skip, specifiedBy (total: 4)
```
  Found on 2026-01-02 09:53
  
  67.2 kBytes
Create report
GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: data.ae.studio
Port: 80
URL: http://data.ae.studio

First seen 2025-12-05 00:48
Last seen 2026-01-02 09:53
Open for 28 days
- Severity: medium
  Fingerprint: c2db3a1c40d490dbf8cbe7e2b444ada86353088c0125b752b8773364b8773364
```
GraphQL introspection enabled at /graphql/api
Types: 39 (by kind: ENUM: 3, INPUT_OBJECT: 16, OBJECT: 16, SCALAR: 4)
Operations:
- Query: Query | fields: people, person, project, projects, timeEntry
Directives: deprecated, include, skip, specifiedBy (total: 4)
```
  Found on 2026-01-02 09:53
  
  67.2 kBytes
Create report
GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 35.71.179.82
Domain: api.oscrsafety.app
Port: 443
URL: https://api.oscrsafety.app

First seen 2025-11-23 00:51
Last seen 2026-01-02 09:51
Open for 40 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa3f75b6c1ba85531592871034da05e38a35a84e2b3
```
GraphQL introspection enabled at /graphql
Types: 172 (by kind: ENUM: 12, INPUT_OBJECT: 70, OBJECT: 81, SCALAR: 8, UNION: 1)
Operations:
- Query: Query | fields: certificationCategories, certification_category, departments, report, training
- Mutation: Mutation | fields: createCertificationCategory, deleteCertificationCategories, deleteCertificationCategory, updateCertificationCategory, upsertCertificationCategory
Directives: deprecated, include, skip (total: 3)
```
  Found on 2026-01-02 09:51
  
  237.9 kBytes
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa3
```
GraphQL introspection enabled at /graphql
```
  Found on 2025-11-26 04:42
Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 75.2.60.68
Domain: www.triangleservices.com
Port: 443
URL: https://www.triangleservices.com

First seen 2022-09-20 01:43
Last seen 2026-01-02 09:50
Open for 1200 days

Severity: high
Fingerprint: 5f32cf5d6962f09c8e4417c08e4417c05f473aaa88a4734cfc6a507904ee810c

Found 62 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/assets/camaleon_cms
/assets/css
/assets/css/font
/assets/css/font/roboto
/assets/express
/assets/plugins
/assets/roboto
/assets/themes
/assets/tinymce
/favicon.ico
/folder-icon.jpg
/fonts
/images
/images/ajax-loader.gif
/images/background
/images/background/img486915007.jpg
/images/background/IMG_8638.jpg
/images/background/IMG_86381.jpg
/images/blue-marker-dot.png
/images/blue-marker.png
/images/cancel_btn_3.png
/images/content
/images/content/maidbot.png
/images/cultureCallout.gif
/images/dia_0002.jpg
/images/dia_0003.jpg
/images/driving_original.bmp
/images/driving_original.png
/images/Equipment.jpg
/images/green
/images/icons
/images/img10.JPG
/images/img101.JPG
/images/img11.JPG
/images/img12.JPG
/images/img13.JPG
/images/img142.JPG
/images/img2.png
/images/img6.png
/images/logos
/images/logos/triangleservices.png
/images/no-image.png
/images/push back plane_original.bmp
/images/push_back_plane_original.png
/images/sign.png
/images/slider
/images/team
/images/topNav_bg.gif
/images/values
/images/values/safety.jpg
/media
/packs
/pdf
/robots.txt
/sitemap.xml.gz
/tmp

Found on 2026-01-02 09:50

Severity: high
Fingerprint: 5f32cf5d6962f09ca0cc0fcfa0cc0fcfe6e06f4bd5beb3e7db005aa0be8f88e7

Found 25 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/assets/camaleon_cms
/assets/css
/assets/css/font
/assets/css/font/roboto
/assets/express
/assets/plugins
/assets/roboto
/assets/themes
/assets/tinymce
/favicon.ico
/folder-icon.jpg
/fonts
/images
/media
/packs
/pdf
/robots.txt
/sitemap.xml.gz
/tmp

Found on 2025-11-28 15:14

Severity: high
Fingerprint: 5f32cf5d6962f09ce9dbcc92e9dbcc92e0b201c0f4cee7f6131833af3e57bbe4

Found 60 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/assets/camaleon_cms
/assets/css
/assets/css/font
/assets/css/font/roboto
/assets/express
/assets/plugins
/assets/roboto
/assets/themes
/assets/tinymce
/favicon.ico
/folder-icon.jpg
/fonts
/images
/images/ajax-loader.gif
/images/background
/images/background/img486915007.jpg
/images/background/IMG_8638.jpg
/images/background/IMG_86381.jpg
/images/blue-marker-dot.png
/images/blue-marker.png
/images/cancel_btn_3.png
/images/content
/images/content/maidbot.png
/images/cultureCallout.gif
/images/dia_0002.jpg
/images/dia_0003.jpg
/images/driving_original.bmp
/images/driving_original.png
/images/Equipment.jpg
/images/green
/images/icons
/images/img10.JPG
/images/img101.JPG
/images/img11.JPG
/images/img12.JPG
/images/img13.JPG
/images/img142.JPG
/images/img2.png
/images/img6.png
/images/logos
/images/no-image.png
/images/push back plane_original.bmp
/images/push_back_plane_original.png
/images/sign.png
/images/slider
/images/team
/images/topNav_bg.gif
/images/values
/media
/packs
/pdf
/robots.txt
/sitemap.xml.gz
/tmp

Found on 2025-11-16 00:54

Severity: high
Fingerprint: 5f32cf5d6962f09c47dfe71947dfe719511acc516ca19a49c4e4557eb7164891

Found 16 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/favicon.ico
/folder-icon.jpg
/fonts
/images
/media
/packs
/pdf
/robots.txt
/sitemap.xml.gz
/tmp

Found on 2025-11-02 06:41

Severity: high
Fingerprint: 5f32cf5d6962f09cb1c4b1dfb1c4b1df9aa7153b481745f72f733b90124ab911

Found 61 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/assets/camaleon_cms
/assets/css
/assets/css/font
/assets/css/font/roboto
/assets/express
/assets/plugins
/assets/roboto
/assets/themes
/assets/tinymce
/favicon.ico
/folder-icon.jpg
/fonts
/images
/images/ajax-loader.gif
/images/background
/images/background/img486915007.jpg
/images/background/IMG_8638.jpg
/images/background/IMG_86381.jpg
/images/blue-marker-dot.png
/images/blue-marker.png
/images/cancel_btn_3.png
/images/content
/images/content/maidbot.png
/images/cultureCallout.gif
/images/dia_0002.jpg
/images/dia_0003.jpg
/images/driving_original.bmp
/images/driving_original.png
/images/Equipment.jpg
/images/green
/images/icons
/images/img10.JPG
/images/img101.JPG
/images/img11.JPG
/images/img12.JPG
/images/img13.JPG
/images/img142.JPG
/images/img2.png
/images/img6.png
/images/logos
/images/logos/triangleservices.png
/images/no-image.png
/images/push back plane_original.bmp
/images/push_back_plane_original.png
/images/sign.png
/images/slider
/images/team
/images/topNav_bg.gif
/images/values
/media
/packs
/pdf
/robots.txt
/sitemap.xml.gz
/tmp

Found on 2025-10-21 14:16

Severity: high
Fingerprint: 5f32cf5d6962f09c74247ea574247ea51b47974df947f80d4914d89a1971f942

Found 56 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/assets/camaleon_cms
/assets/css
/assets/css/font
/assets/css/font/roboto
/assets/express
/assets/plugins
/assets/roboto
/assets/themes
/assets/tinymce
/favicon.ico
/folder-icon.jpg
/fonts
/images
/images/ajax-loader.gif
/images/background
/images/blue-marker-dot.png
/images/blue-marker.png
/images/cancel_btn_3.png
/images/content
/images/cultureCallout.gif
/images/dia_0002.jpg
/images/dia_0003.jpg
/images/driving_original.bmp
/images/driving_original.png
/images/Equipment.jpg
/images/green
/images/icons
/images/img10.JPG
/images/img101.JPG
/images/img11.JPG
/images/img12.JPG
/images/img13.JPG
/images/img142.JPG
/images/img2.png
/images/img6.png
/images/logos
/images/no-image.png
/images/push back plane_original.bmp
/images/push_back_plane_original.png
/images/sign.png
/images/slider
/images/team
/images/topNav_bg.gif
/images/values
/media
/packs
/pdf
/robots.txt
/sitemap.xml.gz
/tmp

Found on 2025-08-10 15:26

Severity: high
Fingerprint: 5f32cf5d6962f09cecc85b04ecc85b0403593bae898c3338ed9d781d6909cdda

Found 53 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/favicon.ico
/folder-icon.jpg
/fonts
/images
/images/ajax-loader.gif
/images/background
/images/background/img486915007.jpg
/images/background/IMG_8638.jpg
/images/background/IMG_86381.jpg
/images/blue-marker-dot.png
/images/blue-marker.png
/images/cancel_btn_3.png
/images/content
/images/content/maidbot.png
/images/cultureCallout.gif
/images/dia_0002.jpg
/images/dia_0003.jpg
/images/driving_original.bmp
/images/driving_original.png
/images/Equipment.jpg
/images/green
/images/icons
/images/img10.JPG
/images/img101.JPG
/images/img11.JPG
/images/img12.JPG
/images/img13.JPG
/images/img142.JPG
/images/img2.png
/images/img6.png
/images/logos
/images/logos/triangleservices.png
/images/no-image.png
/images/push back plane_original.bmp
/images/push_back_plane_original.png
/images/sign.png
/images/slider
/images/team
/images/topNav_bg.gif
/images/values
/images/values/safety.jpg
/media
/packs
/pdf
/robots.txt
/sitemap.xml.gz
/tmp

Found on 2025-07-12 23:44

Severity: high
Fingerprint: 5f32cf5d6962f09c7d264b917d264b91678804a94b27c5618f6636d6ef22a5a7

Found 52 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/favicon.ico
/folder-icon.jpg
/fonts
/images
/images/ajax-loader.gif
/images/background
/images/background/img486915007.jpg
/images/background/IMG_8638.jpg
/images/background/IMG_86381.jpg
/images/blue-marker-dot.png
/images/blue-marker.png
/images/cancel_btn_3.png
/images/content
/images/content/maidbot.png
/images/cultureCallout.gif
/images/dia_0002.jpg
/images/dia_0003.jpg
/images/driving_original.bmp
/images/driving_original.png
/images/Equipment.jpg
/images/green
/images/icons
/images/img10.JPG
/images/img101.JPG
/images/img11.JPG
/images/img12.JPG
/images/img13.JPG
/images/img142.JPG
/images/img2.png
/images/img6.png
/images/logos
/images/logos/triangleservices.png
/images/no-image.png
/images/push back plane_original.bmp
/images/push_back_plane_original.png
/images/sign.png
/images/slider
/images/team
/images/topNav_bg.gif
/images/values
/media
/packs
/pdf
/robots.txt
/sitemap.xml.gz
/tmp

Found on 2025-05-28 12:45

Severity: high
Fingerprint: 5f32cf5d6962f09c75d69a7675d69a7692f047c4ff20f132ebe18e83f92132f2

Found 51 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/favicon.ico
/folder-icon.jpg
/fonts
/images
/images/ajax-loader.gif
/images/background
/images/background/img486915007.jpg
/images/background/IMG_8638.jpg
/images/background/IMG_86381.jpg
/images/blue-marker-dot.png
/images/blue-marker.png
/images/cancel_btn_3.png
/images/content
/images/content/maidbot.png
/images/cultureCallout.gif
/images/dia_0002.jpg
/images/dia_0003.jpg
/images/driving_original.bmp
/images/driving_original.png
/images/Equipment.jpg
/images/green
/images/icons
/images/img10.JPG
/images/img101.JPG
/images/img11.JPG
/images/img12.JPG
/images/img13.JPG
/images/img142.JPG
/images/img2.png
/images/img6.png
/images/logos
/images/no-image.png
/images/push back plane_original.bmp
/images/push_back_plane_original.png
/images/sign.png
/images/slider
/images/team
/images/topNav_bg.gif
/images/values
/media
/packs
/pdf
/robots.txt
/sitemap.xml.gz
/tmp

Found on 2025-03-18 20:17

Severity: high
Fingerprint: 5f32cf5d6962f09cfdf2c773fdf2c773b63c0a2f2d8422130ab4e864ca7061e4

Found 50 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/favicon.ico
/folder-icon.jpg
/fonts
/images
/images/ajax-loader.gif
/images/background
/images/background/img486915007.jpg
/images/background/IMG_8638.jpg
/images/background/IMG_86381.jpg
/images/blue-marker-dot.png
/images/blue-marker.png
/images/cancel_btn_3.png
/images/content
/images/cultureCallout.gif
/images/dia_0002.jpg
/images/dia_0003.jpg
/images/driving_original.bmp
/images/driving_original.png
/images/Equipment.jpg
/images/green
/images/icons
/images/img10.JPG
/images/img101.JPG
/images/img11.JPG
/images/img12.JPG
/images/img13.JPG
/images/img142.JPG
/images/img2.png
/images/img6.png
/images/logos
/images/no-image.png
/images/push back plane_original.bmp
/images/push_back_plane_original.png
/images/sign.png
/images/slider
/images/team
/images/topNav_bg.gif
/images/values
/media
/packs
/pdf
/robots.txt
/sitemap.xml.gz
/tmp

Found on 2024-08-04 14:21

Severity: high
Fingerprint: 5f32cf5d6962f09c114fbe07114fbe07a2f6d683274e813f7885fcd8cf511960

Found 47 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/favicon.ico
/folder-icon.jpg
/fonts
/images
/images/ajax-loader.gif
/images/background
/images/blue-marker-dot.png
/images/blue-marker.png
/images/cancel_btn_3.png
/images/content
/images/cultureCallout.gif
/images/dia_0002.jpg
/images/dia_0003.jpg
/images/driving_original.bmp
/images/driving_original.png
/images/Equipment.jpg
/images/green
/images/icons
/images/img10.JPG
/images/img101.JPG
/images/img11.JPG
/images/img12.JPG
/images/img13.JPG
/images/img142.JPG
/images/img2.png
/images/img6.png
/images/logos
/images/no-image.png
/images/push back plane_original.bmp
/images/push_back_plane_original.png
/images/sign.png
/images/slider
/images/team
/images/topNav_bg.gif
/images/values
/media
/packs
/pdf
/robots.txt
/sitemap.xml.gz
/tmp

Found on 2023-03-21 06:35

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: admin.monumentacademy.org
Port: 443
URL: https://admin.monumentacademy.org

First seen 2025-11-08 00:22
Last seen 2026-01-02 09:47
Open for 55 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3320e84f6535b32e653c5b5683f6920481f48c7be

GraphQL introspection enabled at /graphql
Types: 403 (by kind: ENUM: 3, INPUT_OBJECT: 97, OBJECT: 291, SCALAR: 11, UNION: 1)
Operations:
- Query: Query | fields: announcement, announcements, announcementsConnection, article, articles
- Mutation: Mutation | fields: createAnnouncement, createArticle, deleteAnnouncement, updateAnnouncement, updateArticle
Directives: deprecated, include, skip, specifiedBy (total: 4)

Readable stores: 1
emergencyMessage (args: optional/default) : id=2 created_at=2022-12-13T18:25:30.232Z updated_at=2025-12-16T13:55:48.931Z headline=December Board Meeting: December 10th details=Register for our Open Meeting December 10th! link=https://drive.google.com/file/d/1i3OP5sZK7JNebHcr3CgR0k6PtgCT... display=false name=

Found on 2026-01-02 09:47

340.0 kBytes 8 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3320e84f6535b32e653c5b5683f69204864f8dc56

GraphQL introspection enabled at /graphql
Types: 403 (by kind: ENUM: 3, INPUT_OBJECT: 97, OBJECT: 291, SCALAR: 11, UNION: 1)
Operations:
- Query: Query | fields: announcement, announcements, announcementsConnection, article, articles
- Mutation: Mutation | fields: createAnnouncement, createArticle, deleteAnnouncement, updateAnnouncement, updateArticle
Directives: deprecated, include, skip, specifiedBy (total: 4)

Readable stores: 1
emergencyMessage (args: optional/default) : display=false name= id=2 created_at=2022-12-13T18:25:30.232Z updated_at=2025-12-16T13:55:48.931Z headline=December Board Meeting: December 10th details=Register for our Open Meeting December 10th! link=https://drive.google.com/file/d/1i3OP5sZK7JNebHcr3CgR0k6PtgCT...

Found on 2025-12-26 15:43

340.0 kBytes 8 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3320e84f6535b32e653c5b5683f692048eeed3a54

GraphQL introspection enabled at /graphql
Types: 403 (by kind: ENUM: 3, INPUT_OBJECT: 97, OBJECT: 291, SCALAR: 11, UNION: 1)
Operations:
- Query: Query | fields: announcement, announcements, announcementsConnection, article, articles
- Mutation: Mutation | fields: createAnnouncement, createArticle, deleteAnnouncement, updateAnnouncement, updateArticle
Directives: deprecated, include, skip, specifiedBy (total: 4)

Readable stores: 1
emergencyMessage (args: optional/default) : updated_at=2025-12-16T13:55:48.931Z headline=December Board Meeting: December 10th details=Register for our Open Meeting December 10th! link=https://drive.google.com/file/d/1i3OP5sZK7JNebHcr3CgR0k6PtgCT... display=false name= id=2 created_at=2022-12-13T18:25:30.232Z

Found on 2025-12-24 14:32

340.0 kBytes 8 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3320e84f6535b32e653c5b5683f6920488ee7c328

GraphQL introspection enabled at /graphql
Types: 403 (by kind: ENUM: 3, INPUT_OBJECT: 97, OBJECT: 291, SCALAR: 11, UNION: 1)
Operations:
- Query: Query | fields: announcement, announcements, announcementsConnection, article, articles
- Mutation: Mutation | fields: createAnnouncement, createArticle, deleteAnnouncement, updateAnnouncement, updateArticle
Directives: deprecated, include, skip, specifiedBy (total: 4)

Readable stores: 1
emergencyMessage (args: optional/default) : created_at=2022-12-13T18:25:30.232Z updated_at=2025-12-16T13:55:48.931Z headline=December Board Meeting: December 10th details=Register for our Open Meeting December 10th! link=https://drive.google.com/file/d/1i3OP5sZK7JNebHcr3CgR0k6PtgCT... display=false name= id=2

Found on 2025-12-20 21:05

340.0 kBytes 8 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3320e84f6535b32e653c5b5683f69204851db3feb

GraphQL introspection enabled at /graphql
Types: 403 (by kind: ENUM: 3, INPUT_OBJECT: 97, OBJECT: 291, SCALAR: 11, UNION: 1)
Operations:
- Query: Query | fields: announcement, announcements, announcementsConnection, article, articles
- Mutation: Mutation | fields: createAnnouncement, createArticle, deleteAnnouncement, updateAnnouncement, updateArticle
Directives: deprecated, include, skip, specifiedBy (total: 4)

Readable stores: 1
emergencyMessage (args: optional/default) : name= id=2 created_at=2022-12-13T18:25:30.232Z updated_at=2025-12-05T18:18:14.808Z headline=December Board Meeting: December 10th details=Register for our Open Meeting December 10th! link=https://drive.google.com/file/d/1i3OP5sZK7JNebHcr3CgR0k6PtgCT... display=true

Found on 2025-12-12 23:33

340.0 kBytes 8 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3320e84f6535b32e653c5b5683f69204833ea03fb

GraphQL introspection enabled at /graphql
Types: 403 (by kind: ENUM: 3, INPUT_OBJECT: 97, OBJECT: 291, SCALAR: 11, UNION: 1)
Operations:
- Query: Query | fields: announcement, announcements, announcementsConnection, article, articles
- Mutation: Mutation | fields: createAnnouncement, createArticle, deleteAnnouncement, updateAnnouncement, updateArticle
Directives: deprecated, include, skip, specifiedBy (total: 4)

Readable stores: 1
emergencyMessage (args: optional/default) : headline=December Board Meeting: December 10th details=Register for our Open Meeting December 10th! link=https://drive.google.com/file/d/1i3OP5sZK7JNebHcr3CgR0k6PtgCT... display=true name= id=2 created_at=2022-12-13T18:25:30.232Z updated_at=2025-12-05T18:18:14.808Z

Found on 2025-12-11 04:15

340.0 kBytes 8 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3320e84f6535b32e653c5b5683f692048d41335db

GraphQL introspection enabled at /graphql
Types: 403 (by kind: ENUM: 3, INPUT_OBJECT: 97, OBJECT: 291, SCALAR: 11, UNION: 1)
Operations:
- Query: Query | fields: announcement, announcements, announcementsConnection, article, articles
- Mutation: Mutation | fields: createAnnouncement, createArticle, deleteAnnouncement, updateAnnouncement, updateArticle
Directives: deprecated, include, skip, specifiedBy (total: 4)

Readable stores: 1
emergencyMessage (args: optional/default) : details=Register for our Open Meeting December 10th! link=https://drive.google.com/file/d/1i3OP5sZK7JNebHcr3CgR0k6PtgCT... display=true name= id=2 created_at=2022-12-13T18:25:30.232Z updated_at=2025-12-05T18:18:14.808Z headline=December Board Meeting: December 10th

Found on 2025-12-06 05:09

340.0 kBytes 8 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3320e84f6535b32e653c5b5683f692048b8bfb73b

GraphQL introspection enabled at /graphql
Types: 403 (by kind: ENUM: 3, INPUT_OBJECT: 97, OBJECT: 291, SCALAR: 11, UNION: 1)
Operations:
- Query: Query | fields: announcement, announcements, announcementsConnection, article, articles
- Mutation: Mutation | fields: createAnnouncement, createArticle, deleteAnnouncement, updateAnnouncement, updateArticle
Directives: deprecated, include, skip, specifiedBy (total: 4)

Readable stores: 1
emergencyMessage (args: optional/default) : headline=September Board Meeting: September 10th details=Register for our Open Meeting September 10th! link=https://drive.google.com/file/d/1kncUABfyFcsHrLPx1o_GguEFufHA... display=false name= id=2 created_at=2022-12-13T18:25:30.232Z updated_at=2025-09-17T14:41:17.642Z

Found on 2025-11-30 16:20

340.0 kBytes 8 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3320e84f6535b32e653c5b5683f6920488467c4cb

GraphQL introspection enabled at /graphql
Types: 403 (by kind: ENUM: 3, INPUT_OBJECT: 97, OBJECT: 291, SCALAR: 11, UNION: 1)
Operations:
- Query: Query | fields: announcement, announcements, announcementsConnection, article, articles
- Mutation: Mutation | fields: createAnnouncement, createArticle, deleteAnnouncement, updateAnnouncement, updateArticle
Directives: deprecated, include, skip, specifiedBy (total: 4)

Readable stores: 1
emergencyMessage (args: optional/default) : created_at=2022-12-13T18:25:30.232Z updated_at=2025-09-17T14:41:17.642Z headline=September Board Meeting: September 10th details=Register for our Open Meeting September 10th! link=https://drive.google.com/file/d/1kncUABfyFcsHrLPx1o_GguEFufHA... display=false name= id=2

Found on 2025-11-28 15:47

340.0 kBytes 8 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3320e84f6535b32e653c5b5683f6920489d1bba07

GraphQL introspection enabled at /graphql
Types: 403 (by kind: ENUM: 3, INPUT_OBJECT: 97, OBJECT: 291, SCALAR: 11, UNION: 1)
Operations:
- Query: Query | fields: announcement, announcements, announcementsConnection, article, articles
- Mutation: Mutation | fields: createAnnouncement, createArticle, deleteAnnouncement, updateAnnouncement, updateArticle
Directives: deprecated, include, skip, specifiedBy (total: 4)

Readable stores: 1
emergencyMessage (args: optional/default) : name= id=2 created_at=2022-12-13T18:25:30.232Z updated_at=2025-09-17T14:41:17.642Z headline=September Board Meeting: September 10th details=Register for our Open Meeting September 10th! link=https://drive.google.com/file/d/1kncUABfyFcsHrLPx1o_GguEFufHA... display=false

Found on 2025-11-22 17:58

340.0 kBytes 8 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3320e84f6535b32e653c5b5683f69204800f01c2b

GraphQL introspection enabled at /graphql
Types: 403 (by kind: ENUM: 3, INPUT_OBJECT: 97, OBJECT: 291, SCALAR: 11, UNION: 1)
Operations:
- Query: Query | fields: announcement, announcements, announcementsConnection, article, articles
- Mutation: Mutation | fields: createAnnouncement, createArticle, deleteAnnouncement, updateAnnouncement, updateArticle
Directives: deprecated, include, skip, specifiedBy (total: 4)

Readable stores: 1
emergencyMessage (args: optional/default) : id=2 created_at=2022-12-13T18:25:30.232Z updated_at=2025-09-17T14:41:17.642Z headline=September Board Meeting: September 10th details=Register for our Open Meeting September 10th! link=https://drive.google.com/file/d/1kncUABfyFcsHrLPx1o_GguEFufHA... display=false name=

Found on 2025-11-16 09:06

340.0 kBytes 8 rows

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 75.2.60.68
Domain: www.mayfairplacehoa.com
Port: 443
URL: https://www.mayfairplacehoa.com

First seen 2023-01-12 00:42
Last seen 2026-01-02 09:36
Open for 1086 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c1a5d9b0f1a5d9b0fca8d95fc1cfdddc2837c842d837c842d
```
Found 3 files trough .DS_Store spidering:

/pofo
/pofo/documentation
/pofo/documentation/images
```
  Found on 2026-01-02 09:36
- Severity: low
  Fingerprint: 5f32cf5d6962f09c7cf176427cf17642e8ba8a4b80285c4380285c4380285c43
```
Found 2 files trough .DS_Store spidering:

/pofo
/pofo/documentation
```
  Found on 2025-09-24 01:06
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 75.2.60.68
Domain: www.khateebconnect.com
Port: 80
URL: http://www.khateebconnect.com

First seen 2025-09-29 00:04
Last seen 2026-01-02 09:30
Open for 95 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c0f8dcf020f8dcf020a5b8e37f5ae6db8336952c02a2bf1d0
```
Found 24 files trough .DS_Store spidering:

/_redirects
/asset-manifest.json
/css
/favicon.ico
/index.html
/js
/logo192.png
/logo512.png
/manifest.json
/media
/robots.txt
/static
/static/_redirects
/static/asset-manifest.json
/static/css
/static/favicon.ico
/static/index.html
/static/js
/static/logo192.png
/static/logo512.png
/static/manifest.json
/static/media
/static/robots.txt
/static/static
```
  Found on 2026-01-02 09:30
- Severity: low
  Fingerprint: 5f32cf5d6962f09cec7f8772ec7f8772997a006731573f689ed9f930566483a5
```
Found 11 files trough .DS_Store spidering:

/_redirects
/asset-manifest.json
/css
/favicon.ico
/index.html
/js
/logo192.png
/logo512.png
/manifest.json
/media
/robots.txt
```
  Found on 2025-10-28 22:26
Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: stage-api.hypeindustry.com
Port: 443
URL: https://stage-api.hypeindustry.com

First seen 2025-12-11 00:16
Last seen 2026-01-02 09:07
Open for 22 days

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d6337f81ddfb44bbbff4052f83f0869d5c72935c76

GraphQL introspection enabled at /api/graphql
Types: 229 (by kind: ENUM: 22, INPUT_OBJECT: 97, OBJECT: 103, SCALAR: 7)
Operations:
- Query: RootQueryType | fields: calculateSalesTax, createHyperPayee, currentUser, dashboardStats, deactivateReseller
- Mutation: RootMutationType | fields: activateUser, adminResetPassword, adminSetNoticeSet, approveOrder, attachPaymentMethod
Directives: deprecated, include, skip, specifiedBy (total: 4)

Found on 2026-01-02 09:07

237.5 kBytes

Create report

GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: bossaz-pr-1260.azstage.in
Port: 443
URL: https://bossaz-pr-1260.azstage.in

First seen 2025-11-19 09:33
Last seen 2026-01-02 09:01
Open for 43 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa30bc0e5a9823b5b0b91eee8a9ca714fe7e733bfbf
```
GraphQL introspection enabled at /graphql
Types: 127 (by kind: ENUM: 22, INPUT_OBJECT: 21, INTERFACE: 2, OBJECT: 70, SCALAR: 10, UNION: 2)
Operations:
- Query: Query | fields: balanceHistory, bookmarks, categories, company, draftResume
- Mutation: Mutation | fields: adContact, createBookmark, createContactEmail, createInvoice, createPayment
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)
```
  Found on 2026-01-02 09:01
  
  141.5 kBytes
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 75.2.60.68
Domain: startkleencms.flxsystems.com
Port: 80
URL: http://startkleencms.flxsystems.com

First seen 2025-08-28 01:01
Last seen 2026-01-02 08:59
Open for 127 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9db7f4c636b7f4c636b7f4c636b7f4c636
```
Found 1 files trough .DS_Store spidering:

/images
```
  Found on 2026-01-02 08:59
Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 35.71.179.82
Domain: picasso.api.staging.sdocs.com
Port: 443
URL: https://picasso.api.staging.sdocs.com

First seen 2025-10-17 00:41
Last seen 2026-01-02 08:01
Open for 77 days

Severity: info
Fingerprint: 5733ddf49ff49cd151e75e4b6fbd0de741919ef84711bfd088a4a80354b718b5

Public Swagger UI/API detected at path: /v3/api-docs - sample paths:
DELETE /document/{documentId}/user/{documentUserId}
DELETE /settings/{id}
DELETE /template/{id}/merge-data
DELETE /template/{id}/section/{sectionId}/content-block/{blockId}/image/{imageId}
DELETE /template/{id}/section/{sectionId}/content-block/{blockId}/merge-data/{ids}
DELETE /template/{templateId}/datasource/{datasourceId}
GET /customer/{customerId}/connected-app/{connectedAppId}/assets
GET /customer/{customerId}/connected-app/{connectedAppId}/objects
GET /customer/{customerId}/connectedapplication/{connectedAppId}
GET /customer/{customerId}/connectedapplication/{connectedAppId}/data/{objectApiName}
GET /customer/{customerId}/connectedapplication/{connectedAppId}/objects
GET /customer/{customerId}/connectedapplication/{connectedAppId}/objects/{apiName}/dataelements
GET /customer/{customerId}/connectedapplication/{connectedAppId}/objects/{apiName}/relationships
GET /customer/{customerId}/connectedapplications
GET /customer/{customerId}/objects/{objectId}/relationships/{relationshipId}/fields
GET /customer/{customerId}/objects/{objectId}/schema
GET /customer/{id}/datasource
GET /customer/{id}/templates
GET /dataElements/{dataElementId}/options
GET /datasource/{id}/refreshtime
GET /datasource/{id}/{objName}
GET /document-user/{documentId}/user/{userId}
GET /document/{documentId}/comments
GET /document/{documentId}/fieldConfig
GET /document/{documentId}/fieldConfig/{id}
GET /document/{documentId}/merge-data
GET /document/{documentId}/related-list/{relatedListId}
GET /document/{documentId}/section
GET /document/{documentId}/section/{documentSectionId}
GET /document/{documentId}/section/{documentSectionId}/contentBlock
GET /document/{documentId}/section/{documentSectionId}/contentBlock/{documentContentBlockId}
GET /document/{documentId}/users
GET /document/{documentId}/version
GET /document/{documentId}/version/{versionId}/section/{sectionId}/contentBlock/{contentBlockId}
GET /document/{documentId}/version/{versionId}/section/{sectionId}/contentBlock/{contentBlockId}/comment/{commentId}
GET /documents/all
GET /documents/customer/{customerId}
GET /documents/documentCards
GET /documents/file/{fileId}
GET /documents/generate/init
GET /documents/hub/{hubId}
GET /documents/invitedDocument/{id}
GET /documents/poll
GET /documents/template/{templateId}
GET /documents/{documentId}/generate/pdf
GET /documents/{documentId}/{functionality}/{domain}/validate-access
GET /documents/{hubId}/{objectId}/{templateId}
GET /documents/{id}
GET /documents/{id}/inputfields
GET /file
GET /settings
GET /settings/app
GET /template
GET /template/workFlow
GET /template/{id}
GET /template/{id}/datasource
GET /template/{id}/datasource/{dataSourceId}/elements/{objName}
GET /template/{id}/datasource/{dataSourceId}/type
GET /template/{id}/datasources/type
GET /template/{id}/elements/{objName}
GET /template/{id}/section/{sectionId}/content-block/{blockId}
GET /template/{id}/section/{sectionId}/content-block/{blockId}/merge-data
GET /template/{id}/section/{sectionId}/content-block/{blockId}/{fieldKey}/merge-data
GET /template/{id}/section/{sectionId}/content-blocks
GET /template/{id}/section/{sectionId}/related-list
GET /template/{templateId}/accessible-profile
GET /template/{templateId}/fieldConfig
GET /template/{templateId}/fieldConfig/{id}
GET /template/{templateId}/inputfields
GET /template/{templateId}/merge-data
GET /template/{templateId}/preview
GET /template/{templateId}/profile
GET /template/{templateId}/profile/{profileId}
GET /template/{templateId}/relations
GET /template/{templateId}/section
GET /template/{templateId}/section/{sectionId}
GET /template/{templateId}/section/{sectionId}/content-block/{blockId}/block-action
GET /template/{templateId}/section/{sectionId}/content-block/{blockId}/block-action/{blockActionId}
GET /template/{templateId}/section/{sectionId}/content-block/{blockId}/render-rule/{ruleId}
GET /template/{templateId}/section/{sectionId}/content-block/{blockId}/render-rule/{ruleId}/rule-detail/{ruleDetailId}
GET /v1/template/{id}/datasources/type
PATCH /customer/{customerId}/connected-app/{connectedAppId}/data/migrate
PATCH /customer/{customerId}/connected-app/{connectedAppId}/objects/{objectId}/fields/refresh
PATCH /customer/{customerId}/connected-app/{connectedAppId}/objects/{objectId}/relationships/refresh
PATCH /customer/{customerId}/connected-app/{connectedAppId}/objects/{objectId}/relationships/status
PATCH /customer/{customerId}/connected-app/{connectedAppId}/objects/{objectId}/relationships/{relationshipId}/fields/refresh
PATCH /customer/{customerId}/connected-app/{connectedAppId}/settings/objects/refresh
PATCH /customer/{customerId}/connectedapplication/{connectedAppId}/object/{apiName}/element
PATCH /customer/{customerId}/connectedapplication/{connectedAppId}/objects/{apiName}/relationships/{data_source_rel_id}
PATCH /customer/{customerId}/fields/status
PATCH /customer/{customerId}/objects/status
PATCH /document/{documentId}/section/{documentSectionId}/contentBlock/{documentContentBlockId}/refresh
PATCH /document/{documentId}/version/{versionId}
PATCH /documentUser/{documentId}/user/{userId}
PATCH /documents/lock/{documentId}
PATCH /documents/{id}/inputfields/all
PATCH /documents/{id}/refresh
PATCH /documents/{id}/restore
PATCH /template/{id}/section/{sectionId}/content-block/{blockId}/merge-data/{mergeId}
PATCH /template/{templateId}/profiles
POST /customer/{customerId}/connected-app/{connectedAppId}/objects/schema
POST /customer/{customerId}/connected-app/{connectedAppId}/settings/objects
POST /customer/{customerId}/connected-app/{connectedAppId}/settings/objects/{objectId}/schema
POST /customer/{customerId}/connectedapplication/{connectedAppId}/datasource
POST /customer/{customerId}/connectedapplication/{connectedAppId}/objects/{apiName}/relationship
POST /customer/{customerId}/connectedapplication/{connectedAppId}/refresh
POST /customer/{customerId}/runtime-datasource
POST /datasource/{dataSourceId}/elements
POST /document/{documentId}/user
POST /document/{documentId}/version/{versionId}/section/{sectionId}/contentBlock/{contentBlockId}/comment
POST /documents
POST /documents/generateDocument
POST /documents/{documentId}/retry
POST /template/cloneTemplateToNewUser/{newCustomerId}/{existingCustomerId}/{newUserId}
POST /template/{id}/datasource/{dataSourceId}/elements
POST /template/{id}/section
POST /template/{id}/section/{sectionId}/content-block
POST /template/{id}/section/{sectionId}/content-block/{blockId}/image
POST /template/{templateId}/clone
POST /template/{templateId}/publish
POST /template/{templateId}/section/{sectionId}/content-block/{blockId}/render-rule
POST /template/{templateId}/section/{sectionId}/content-block/{blockId}/render-rule/{ruleId}/rule-detail
POST /upload-file

Found on 2026-01-02 08:01

Severity: info
Fingerprint: 5733ddf49ff49cd151e75e4b6fbd0de741919ef84711bfd088a4a803820fb58d

Public Swagger UI/API detected at path: /v3/api-docs - sample paths:
DELETE /document/{documentId}/user/{documentUserId}
DELETE /settings/{id}
DELETE /template/{id}/merge-data
DELETE /template/{id}/section/{sectionId}/content-block/{blockId}/image/{imageId}
DELETE /template/{id}/section/{sectionId}/content-block/{blockId}/merge-data/{ids}
DELETE /template/{templateId}/datasource/{datasourceId}
GET /customer/{customerId}/connected-app/{connectedAppId}/assets
GET /customer/{customerId}/connected-app/{connectedAppId}/objects
GET /customer/{customerId}/connectedapplication/{connectedAppId}
GET /customer/{customerId}/connectedapplication/{connectedAppId}/data/{objectApiName}
GET /customer/{customerId}/connectedapplication/{connectedAppId}/objects
GET /customer/{customerId}/connectedapplication/{connectedAppId}/objects/{apiName}/dataelements
GET /customer/{customerId}/connectedapplication/{connectedAppId}/objects/{apiName}/relationships
GET /customer/{customerId}/connectedapplications
GET /customer/{customerId}/objects/{objectId}/relationships/{relationshipId}/fields
GET /customer/{customerId}/objects/{objectId}/schema
GET /customer/{id}/datasource
GET /customer/{id}/templates
GET /dataElements/{dataElementId}/options
GET /datasource/{id}/refreshtime
GET /datasource/{id}/{objName}
GET /document-user/{documentId}/user/{userId}
GET /document/{documentId}/comments
GET /document/{documentId}/fieldConfig
GET /document/{documentId}/fieldConfig/{id}
GET /document/{documentId}/merge-data
GET /document/{documentId}/related-list/{relatedListId}
GET /document/{documentId}/section
GET /document/{documentId}/section/{documentSectionId}
GET /document/{documentId}/section/{documentSectionId}/contentBlock
GET /document/{documentId}/section/{documentSectionId}/contentBlock/{documentContentBlockId}
GET /document/{documentId}/users
GET /document/{documentId}/version
GET /document/{documentId}/version/{versionId}/section/{sectionId}/contentBlock/{contentBlockId}
GET /document/{documentId}/version/{versionId}/section/{sectionId}/contentBlock/{contentBlockId}/comment/{commentId}
GET /documents
GET /documents/all
GET /documents/customer/{customerId}
GET /documents/documentCards
GET /documents/file/{fileId}
GET /documents/generate/init
GET /documents/hub/{hubId}
GET /documents/invitedDocument/{id}
GET /documents/poll
GET /documents/template/{templateId}
GET /documents/{documentId}/generate/pdf
GET /documents/{documentId}/{functionality}/{domain}/validate-access
GET /documents/{hubId}/{objectId}/{templateId}
GET /documents/{id}
GET /documents/{id}/inputfields
GET /file
GET /settings
GET /settings/app
GET /template
GET /template/workFlow
GET /template/{id}
GET /template/{id}/datasource
GET /template/{id}/datasource/{dataSourceId}/elements/{objName}
GET /template/{id}/datasource/{dataSourceId}/type
GET /template/{id}/datasources/type
GET /template/{id}/elements/{objName}
GET /template/{id}/section/{sectionId}/content-block/{blockId}
GET /template/{id}/section/{sectionId}/content-block/{blockId}/merge-data
GET /template/{id}/section/{sectionId}/content-block/{blockId}/{fieldKey}/merge-data
GET /template/{id}/section/{sectionId}/content-blocks
GET /template/{id}/section/{sectionId}/related-list
GET /template/{templateId}/accessible-profile
GET /template/{templateId}/fieldConfig
GET /template/{templateId}/fieldConfig/{id}
GET /template/{templateId}/inputfields
GET /template/{templateId}/merge-data
GET /template/{templateId}/preview
GET /template/{templateId}/profile
GET /template/{templateId}/profile/{profileId}
GET /template/{templateId}/relations
GET /template/{templateId}/section
GET /template/{templateId}/section/{sectionId}
GET /template/{templateId}/section/{sectionId}/content-block/{blockId}/block-action
GET /template/{templateId}/section/{sectionId}/content-block/{blockId}/block-action/{blockActionId}
GET /template/{templateId}/section/{sectionId}/content-block/{blockId}/render-rule/{ruleId}
GET /template/{templateId}/section/{sectionId}/content-block/{blockId}/render-rule/{ruleId}/rule-detail/{ruleDetailId}
GET /v1/template/{id}/datasources/type
PATCH /customer/{customerId}/connected-app/{connectedAppId}/data/migrate
PATCH /customer/{customerId}/connected-app/{connectedAppId}/objects/{objectId}/fields/refresh
PATCH /customer/{customerId}/connected-app/{connectedAppId}/objects/{objectId}/relationships/refresh
PATCH /customer/{customerId}/connected-app/{connectedAppId}/objects/{objectId}/relationships/status
PATCH /customer/{customerId}/connected-app/{connectedAppId}/objects/{objectId}/relationships/{relationshipId}/fields/refresh
PATCH /customer/{customerId}/connected-app/{connectedAppId}/settings/objects/refresh
PATCH /customer/{customerId}/connectedapplication/{connectedAppId}/object/{apiName}/element
PATCH /customer/{customerId}/connectedapplication/{connectedAppId}/objects/{apiName}/relationships/{data_source_rel_id}
PATCH /customer/{customerId}/fields/status
PATCH /customer/{customerId}/objects/status
PATCH /document/{documentId}/section/{documentSectionId}/contentBlock/{documentContentBlockId}/refresh
PATCH /document/{documentId}/version/{versionId}
PATCH /documentUser/{documentId}/user/{userId}
PATCH /documents/lock/{documentId}
PATCH /documents/{id}/inputfields/all
PATCH /documents/{id}/refresh
PATCH /documents/{id}/restore
PATCH /template/{id}/section/{sectionId}/content-block/{blockId}/merge-data/{mergeId}
PATCH /template/{templateId}/profiles
POST /customer/{customerId}/connected-app/{connectedAppId}/objects/schema
POST /customer/{customerId}/connected-app/{connectedAppId}/settings/objects
POST /customer/{customerId}/connected-app/{connectedAppId}/settings/objects/{objectId}/schema
POST /customer/{customerId}/connectedapplication/{connectedAppId}/datasource
POST /customer/{customerId}/connectedapplication/{connectedAppId}/objects/{apiName}/relationship
POST /customer/{customerId}/connectedapplication/{connectedAppId}/refresh
POST /customer/{customerId}/runtime-datasource
POST /datasource/{dataSourceId}/elements
POST /document/{documentId}/user
POST /document/{documentId}/version/{versionId}/section/{sectionId}/contentBlock/{contentBlockId}/comment
POST /documents/generateDocument
POST /documents/{documentId}/retry
POST /template/cloneTemplateToNewUser/{newCustomerId}/{existingCustomerId}/{newUserId}
POST /template/{id}/datasource/{dataSourceId}/elements
POST /template/{id}/section
POST /template/{id}/section/{sectionId}/content-block
POST /template/{id}/section/{sectionId}/content-block/{blockId}/image
POST /template/{templateId}/clone
POST /template/{templateId}/publish
POST /template/{templateId}/section/{sectionId}/content-block/{blockId}/render-rule
POST /template/{templateId}/section/{sectionId}/content-block/{blockId}/render-rule/{ruleId}/rule-detail
POST /upload-file

Found on 2025-12-12 17:25

Severity: info
Fingerprint: 5733ddf49ff49cd151e75e4b6fbd0de741919ef84711bfd088a4a8039c6c2b6f

Public Swagger UI/API detected at path: /v3/api-docs - sample paths:
DELETE /document/{documentId}/user/{documentUserId}
DELETE /settings/{id}
DELETE /template/{id}/merge-data
DELETE /template/{id}/section/{sectionId}/content-block/{blockId}/image/{imageId}
DELETE /template/{id}/section/{sectionId}/content-block/{blockId}/merge-data/{ids}
DELETE /template/{templateId}/datasource/{datasourceId}
GET /customer/{customerId}/connected-app/{connectedAppId}/assets
GET /customer/{customerId}/connected-app/{connectedAppId}/objects
GET /customer/{customerId}/connectedapplication/{connectedAppId}
GET /customer/{customerId}/connectedapplication/{connectedAppId}/data/{objectApiName}
GET /customer/{customerId}/connectedapplication/{connectedAppId}/objects
GET /customer/{customerId}/connectedapplication/{connectedAppId}/objects/{apiName}/dataelements
GET /customer/{customerId}/connectedapplication/{connectedAppId}/objects/{apiName}/relationships
GET /customer/{customerId}/connectedapplications
GET /customer/{customerId}/objects/{objectId}/related-objects/{relatedObjectId}/fields
GET /customer/{customerId}/objects/{objectId}/schema
GET /customer/{id}/datasource
GET /customer/{id}/templates
GET /dataElements/{dataElementId}/options
GET /datasource/{id}/refreshtime
GET /datasource/{id}/{objName}
GET /document-user/{documentId}/user/{userId}
GET /document/{documentId}/comments
GET /document/{documentId}/fieldConfig
GET /document/{documentId}/fieldConfig/{id}
GET /document/{documentId}/merge-data
GET /document/{documentId}/related-list/{relatedListId}
GET /document/{documentId}/section
GET /document/{documentId}/section/{documentSectionId}
GET /document/{documentId}/section/{documentSectionId}/contentBlock
GET /document/{documentId}/section/{documentSectionId}/contentBlock/{documentContentBlockId}
GET /document/{documentId}/users
GET /document/{documentId}/version
GET /document/{documentId}/version/{versionId}/section/{sectionId}/contentBlock/{contentBlockId}
GET /document/{documentId}/version/{versionId}/section/{sectionId}/contentBlock/{contentBlockId}/comment/{commentId}
GET /documents
GET /documents/all
GET /documents/customer/{customerId}
GET /documents/documentCards
GET /documents/file/{fileId}
GET /documents/generate/init
GET /documents/hub/{hubId}
GET /documents/invitedDocument/{id}
GET /documents/poll
GET /documents/template/{templateId}
GET /documents/{documentId}/generate/pdf
GET /documents/{documentId}/{functionality}/{domain}/validate-access
GET /documents/{hubId}/{objectId}/{templateId}
GET /documents/{id}
GET /documents/{id}/inputfields
GET /file
GET /settings
GET /settings/app
GET /template
GET /template/workFlow
GET /template/{id}
GET /template/{id}/datasource
GET /template/{id}/datasource/{dataSourceId}/elements/{objName}
GET /template/{id}/datasource/{dataSourceId}/type
GET /template/{id}/datasources/type
GET /template/{id}/elements/{objName}
GET /template/{id}/section/{sectionId}/content-block/{blockId}
GET /template/{id}/section/{sectionId}/content-block/{blockId}/merge-data
GET /template/{id}/section/{sectionId}/content-block/{blockId}/{fieldKey}/merge-data
GET /template/{id}/section/{sectionId}/content-blocks
GET /template/{id}/section/{sectionId}/related-list
GET /template/{templateId}/accessible-profile
GET /template/{templateId}/fieldConfig
GET /template/{templateId}/fieldConfig/{id}
GET /template/{templateId}/inputfields
GET /template/{templateId}/merge-data
GET /template/{templateId}/preview
GET /template/{templateId}/profile
GET /template/{templateId}/profile/{profileId}
GET /template/{templateId}/relations
GET /template/{templateId}/section
GET /template/{templateId}/section/{sectionId}
GET /template/{templateId}/section/{sectionId}/content-block/{blockId}/block-action
GET /template/{templateId}/section/{sectionId}/content-block/{blockId}/block-action/{blockActionId}
GET /template/{templateId}/section/{sectionId}/content-block/{blockId}/render-rule/{ruleId}
GET /template/{templateId}/section/{sectionId}/content-block/{blockId}/render-rule/{ruleId}/rule-detail/{ruleDetailId}
GET /v1/template/{id}/datasources/type
PATCH /customer/{customerId}/connected-app/{connectedAppId}/data/migrate
PATCH /customer/{customerId}/connected-app/{connectedAppId}/objects/{objectId}/fields/refresh
PATCH /customer/{customerId}/connected-app/{connectedAppId}/objects/{objectId}/related-objects/{relatedObjectId}/fields/refresh
PATCH /customer/{customerId}/connected-app/{connectedAppId}/objects/{objectId}/relationship/refresh
PATCH /customer/{customerId}/connected-app/{connectedAppId}/objects/{objectId}/relationship/status
PATCH /customer/{customerId}/connected-app/{connectedAppId}/settings/objects/refresh
PATCH /customer/{customerId}/connectedapplication/{connectedAppId}/object/{apiName}/element
PATCH /customer/{customerId}/connectedapplication/{connectedAppId}/objects/{apiName}/relationships/{data_source_rel_id}
PATCH /customer/{customerId}/fields/status
PATCH /customer/{customerId}/objects/status
PATCH /document/{documentId}/section/{documentSectionId}/contentBlock/{documentContentBlockId}/refresh
PATCH /document/{documentId}/version/{versionId}
PATCH /documentUser/{documentId}/user/{userId}
PATCH /documents/lock/{documentId}
PATCH /documents/{id}/inputfields/all
PATCH /documents/{id}/refresh
PATCH /documents/{id}/restore
PATCH /template/{id}/section/{sectionId}/content-block/{blockId}/merge-data/{mergeId}
PATCH /template/{templateId}/profiles
POST /customer/{customerId}/connected-app/{connectedAppId}/objects/schema
POST /customer/{customerId}/connected-app/{connectedAppId}/settings/objects
POST /customer/{customerId}/connected-app/{connectedAppId}/settings/objects/{objectId}/schema
POST /customer/{customerId}/connectedapplication/{connectedAppId}/datasource
POST /customer/{customerId}/connectedapplication/{connectedAppId}/objects/{apiName}/relationship
POST /customer/{customerId}/connectedapplication/{connectedAppId}/refresh
POST /customer/{customerId}/runtime-datasource
POST /datasource/{dataSourceId}/elements
POST /document/{documentId}/user
POST /document/{documentId}/version/{versionId}/section/{sectionId}/contentBlock/{contentBlockId}/comment
POST /documents/generateDocument
POST /documents/{documentId}/retry
POST /template/cloneTemplateToNewUser/{newCustomerId}/{existingCustomerId}/{newUserId}
POST /template/{id}/datasource/{dataSourceId}/elements
POST /template/{id}/section
POST /template/{id}/section/{sectionId}/content-block
POST /template/{id}/section/{sectionId}/content-block/{blockId}/image
POST /template/{templateId}/clone
POST /template/{templateId}/publish
POST /template/{templateId}/section/{sectionId}/content-block/{blockId}/render-rule
POST /template/{templateId}/section/{sectionId}/content-block/{blockId}/render-rule/{ruleId}/rule-detail
POST /upload-file

Found on 2025-10-17 00:41

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 75.2.60.68
Domain: www.grapeseedwine.com
Port: 80
URL: http://www.grapeseedwine.com

First seen 2025-09-10 16:50
Last seen 2026-01-02 07:42
Open for 113 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c2eda814e2eda814eae693cfa02cf57696de938e2c0fa9ebe
```
Found 6 files trough .DS_Store spidering:

/favicon.ico
/fonts
/google97315f961a5a1740.html
/robots.txt
/uploads
/videos
```
  Found on 2026-01-02 07:42
Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 99.83.220.108
Domain: admin.monumentacademy.org
Port: 80
URL: http://admin.monumentacademy.org

First seen 2025-11-08 00:22
Last seen 2026-01-02 07:41
Open for 55 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3320e84f6535b32e653c5b5683f69204809fcec3e

GraphQL introspection enabled at /graphql
Types: 403 (by kind: ENUM: 3, INPUT_OBJECT: 97, OBJECT: 291, SCALAR: 11, UNION: 1)
Operations:
- Query: Query | fields: announcement, announcements, announcementsConnection, article, articles
- Mutation: Mutation | fields: createAnnouncement, createArticle, deleteAnnouncement, updateAnnouncement, updateArticle
Directives: deprecated, include, skip, specifiedBy (total: 4)

Readable stores: 1
emergencyMessage (args: optional/default) : name= id=2 created_at=2022-12-13T18:25:30.232Z updated_at=2025-12-16T13:55:48.931Z headline=December Board Meeting: December 10th details=Register for our Open Meeting December 10th! link=https://drive.google.com/file/d/1i3OP5sZK7JNebHcr3CgR0k6PtgCT... display=false

Found on 2026-01-02 07:41

340.0 kBytes 8 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3320e84f6535b32e653c5b5683f6920488ee7c328

GraphQL introspection enabled at /graphql
Types: 403 (by kind: ENUM: 3, INPUT_OBJECT: 97, OBJECT: 291, SCALAR: 11, UNION: 1)
Operations:
- Query: Query | fields: announcement, announcements, announcementsConnection, article, articles
- Mutation: Mutation | fields: createAnnouncement, createArticle, deleteAnnouncement, updateAnnouncement, updateArticle
Directives: deprecated, include, skip, specifiedBy (total: 4)

Readable stores: 1
emergencyMessage (args: optional/default) : created_at=2022-12-13T18:25:30.232Z updated_at=2025-12-16T13:55:48.931Z headline=December Board Meeting: December 10th details=Register for our Open Meeting December 10th! link=https://drive.google.com/file/d/1i3OP5sZK7JNebHcr3CgR0k6PtgCT... display=false name= id=2

Found on 2025-12-26 21:15

340.0 kBytes 8 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3320e84f6535b32e653c5b5683f692048c654698c

GraphQL introspection enabled at /graphql
Types: 403 (by kind: ENUM: 3, INPUT_OBJECT: 97, OBJECT: 291, SCALAR: 11, UNION: 1)
Operations:
- Query: Query | fields: announcement, announcements, announcementsConnection, article, articles
- Mutation: Mutation | fields: createAnnouncement, createArticle, deleteAnnouncement, updateAnnouncement, updateArticle
Directives: deprecated, include, skip, specifiedBy (total: 4)

Readable stores: 1
emergencyMessage (args: optional/default) : headline=December Board Meeting: December 10th details=Register for our Open Meeting December 10th! link=https://drive.google.com/file/d/1i3OP5sZK7JNebHcr3CgR0k6PtgCT... display=false name= id=2 created_at=2022-12-13T18:25:30.232Z updated_at=2025-12-16T13:55:48.931Z

Found on 2025-12-23 03:48

340.0 kBytes 8 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3320e84f6535b32e653c5b5683f6920487065b780

GraphQL introspection enabled at /graphql
Types: 403 (by kind: ENUM: 3, INPUT_OBJECT: 97, OBJECT: 291, SCALAR: 11, UNION: 1)
Operations:
- Query: Query | fields: announcement, announcements, announcementsConnection, article, articles
- Mutation: Mutation | fields: createAnnouncement, createArticle, deleteAnnouncement, updateAnnouncement, updateArticle
Directives: deprecated, include, skip, specifiedBy (total: 4)

Readable stores: 1
emergencyMessage (args: optional/default) : link=https://drive.google.com/file/d/1i3OP5sZK7JNebHcr3CgR0k6PtgCT... display=false name= id=2 created_at=2022-12-13T18:25:30.232Z updated_at=2025-12-16T13:55:48.931Z headline=December Board Meeting: December 10th details=Register for our Open Meeting December 10th!

Found on 2025-12-21 01:35

340.0 kBytes 8 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3320e84f6535b32e653c5b5683f6920481be81f7c

GraphQL introspection enabled at /graphql
Types: 403 (by kind: ENUM: 3, INPUT_OBJECT: 97, OBJECT: 291, SCALAR: 11, UNION: 1)
Operations:
- Query: Query | fields: announcement, announcements, announcementsConnection, article, articles
- Mutation: Mutation | fields: createAnnouncement, createArticle, deleteAnnouncement, updateAnnouncement, updateArticle
Directives: deprecated, include, skip, specifiedBy (total: 4)

Readable stores: 1
emergencyMessage (args: optional/default) : details=Register for our Open Meeting December 10th! link=https://drive.google.com/file/d/1i3OP5sZK7JNebHcr3CgR0k6PtgCT... display=false name= id=2 created_at=2022-12-13T18:25:30.232Z updated_at=2025-12-16T13:55:48.931Z headline=December Board Meeting: December 10th

Found on 2025-12-18 20:31

340.0 kBytes 8 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3320e84f6535b32e653c5b5683f69204864f8dc56

GraphQL introspection enabled at /graphql
Types: 403 (by kind: ENUM: 3, INPUT_OBJECT: 97, OBJECT: 291, SCALAR: 11, UNION: 1)
Operations:
- Query: Query | fields: announcement, announcements, announcementsConnection, article, articles
- Mutation: Mutation | fields: createAnnouncement, createArticle, deleteAnnouncement, updateAnnouncement, updateArticle
Directives: deprecated, include, skip, specifiedBy (total: 4)

Readable stores: 1
emergencyMessage (args: optional/default) : display=false name= id=2 created_at=2022-12-13T18:25:30.232Z updated_at=2025-12-16T13:55:48.931Z headline=December Board Meeting: December 10th details=Register for our Open Meeting December 10th! link=https://drive.google.com/file/d/1i3OP5sZK7JNebHcr3CgR0k6PtgCT...

Found on 2025-12-16 17:50

340.0 kBytes 8 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3320e84f6535b32e653c5b5683f6920489f6ac83f

GraphQL introspection enabled at /graphql
Types: 403 (by kind: ENUM: 3, INPUT_OBJECT: 97, OBJECT: 291, SCALAR: 11, UNION: 1)
Operations:
- Query: Query | fields: announcement, announcements, announcementsConnection, article, articles
- Mutation: Mutation | fields: createAnnouncement, createArticle, deleteAnnouncement, updateAnnouncement, updateArticle
Directives: deprecated, include, skip, specifiedBy (total: 4)

Readable stores: 1
emergencyMessage (args: optional/default) : updated_at=2025-12-05T18:18:14.808Z headline=December Board Meeting: December 10th details=Register for our Open Meeting December 10th! link=https://drive.google.com/file/d/1i3OP5sZK7JNebHcr3CgR0k6PtgCT... display=true name= id=2 created_at=2022-12-13T18:25:30.232Z

Found on 2025-12-14 10:10

340.0 kBytes 8 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3320e84f6535b32e653c5b5683f692048c45d8867

GraphQL introspection enabled at /graphql
Types: 403 (by kind: ENUM: 3, INPUT_OBJECT: 97, OBJECT: 291, SCALAR: 11, UNION: 1)
Operations:
- Query: Query | fields: announcement, announcements, announcementsConnection, article, articles
- Mutation: Mutation | fields: createAnnouncement, createArticle, deleteAnnouncement, updateAnnouncement, updateArticle
Directives: deprecated, include, skip, specifiedBy (total: 4)

Readable stores: 1
emergencyMessage (args: optional/default) : id=2 created_at=2022-12-13T18:25:30.232Z updated_at=2025-12-05T18:18:14.808Z headline=December Board Meeting: December 10th details=Register for our Open Meeting December 10th! link=https://drive.google.com/file/d/1i3OP5sZK7JNebHcr3CgR0k6PtgCT... display=true name=

Found on 2025-12-13 00:58

340.0 kBytes 8 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3320e84f6535b32e653c5b5683f69204833ea03fb

GraphQL introspection enabled at /graphql
Types: 403 (by kind: ENUM: 3, INPUT_OBJECT: 97, OBJECT: 291, SCALAR: 11, UNION: 1)
Operations:
- Query: Query | fields: announcement, announcements, announcementsConnection, article, articles
- Mutation: Mutation | fields: createAnnouncement, createArticle, deleteAnnouncement, updateAnnouncement, updateArticle
Directives: deprecated, include, skip, specifiedBy (total: 4)

Readable stores: 1
emergencyMessage (args: optional/default) : headline=December Board Meeting: December 10th details=Register for our Open Meeting December 10th! link=https://drive.google.com/file/d/1i3OP5sZK7JNebHcr3CgR0k6PtgCT... display=true name= id=2 created_at=2022-12-13T18:25:30.232Z updated_at=2025-12-05T18:18:14.808Z

Found on 2025-12-11 05:41

340.0 kBytes 8 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3320e84f6535b32e653c5b5683f69204800f01c2b

GraphQL introspection enabled at /graphql
Types: 403 (by kind: ENUM: 3, INPUT_OBJECT: 97, OBJECT: 291, SCALAR: 11, UNION: 1)
Operations:
- Query: Query | fields: announcement, announcements, announcementsConnection, article, articles
- Mutation: Mutation | fields: createAnnouncement, createArticle, deleteAnnouncement, updateAnnouncement, updateArticle
Directives: deprecated, include, skip, specifiedBy (total: 4)

Readable stores: 1
emergencyMessage (args: optional/default) : id=2 created_at=2022-12-13T18:25:30.232Z updated_at=2025-09-17T14:41:17.642Z headline=September Board Meeting: September 10th details=Register for our Open Meeting September 10th! link=https://drive.google.com/file/d/1kncUABfyFcsHrLPx1o_GguEFufHA... display=false name=

Found on 2025-12-01 12:13

340.0 kBytes 8 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3320e84f6535b32e653c5b5683f69204825d926eb

GraphQL introspection enabled at /graphql
Types: 403 (by kind: ENUM: 3, INPUT_OBJECT: 97, OBJECT: 291, SCALAR: 11, UNION: 1)
Operations:
- Query: Query | fields: announcement, announcements, announcementsConnection, article, articles
- Mutation: Mutation | fields: createAnnouncement, createArticle, deleteAnnouncement, updateAnnouncement, updateArticle
Directives: deprecated, include, skip, specifiedBy (total: 4)

Readable stores: 1
emergencyMessage (args: optional/default) : details=Register for our Open Meeting September 10th! link=https://drive.google.com/file/d/1kncUABfyFcsHrLPx1o_GguEFufHA... display=false name= id=2 created_at=2022-12-13T18:25:30.232Z updated_at=2025-09-17T14:41:17.642Z headline=September Board Meeting: September 10th

Found on 2025-11-29 02:56

340.0 kBytes 8 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3320e84f6535b32e653c5b5683f6920488360d2a7

GraphQL introspection enabled at /graphql
Types: 403 (by kind: ENUM: 3, INPUT_OBJECT: 97, OBJECT: 291, SCALAR: 11, UNION: 1)
Operations:
- Query: Query | fields: announcement, announcements, announcementsConnection, article, articles
- Mutation: Mutation | fields: createAnnouncement, createArticle, deleteAnnouncement, updateAnnouncement, updateArticle
Directives: deprecated, include, skip, specifiedBy (total: 4)

Readable stores: 1
emergencyMessage (args: optional/default) : link=https://drive.google.com/file/d/1kncUABfyFcsHrLPx1o_GguEFufHA... display=false name= id=2 created_at=2022-12-13T18:25:30.232Z updated_at=2025-09-17T14:41:17.642Z headline=September Board Meeting: September 10th details=Register for our Open Meeting September 10th!

Found on 2025-11-24 08:50

340.0 kBytes 8 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3320e84f6535b32e653c5b5683f6920488467c4cb

GraphQL introspection enabled at /graphql
Types: 403 (by kind: ENUM: 3, INPUT_OBJECT: 97, OBJECT: 291, SCALAR: 11, UNION: 1)
Operations:
- Query: Query | fields: announcement, announcements, announcementsConnection, article, articles
- Mutation: Mutation | fields: createAnnouncement, createArticle, deleteAnnouncement, updateAnnouncement, updateArticle
Directives: deprecated, include, skip, specifiedBy (total: 4)

Readable stores: 1
emergencyMessage (args: optional/default) : created_at=2022-12-13T18:25:30.232Z updated_at=2025-09-17T14:41:17.642Z headline=September Board Meeting: September 10th details=Register for our Open Meeting September 10th! link=https://drive.google.com/file/d/1kncUABfyFcsHrLPx1o_GguEFufHA... display=false name= id=2

Found on 2025-11-20 10:33

340.0 kBytes 8 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3320e84f6535b32e653c5b5683f69204858c9ea97

GraphQL introspection enabled at /graphql
Types: 403 (by kind: ENUM: 3, INPUT_OBJECT: 97, OBJECT: 291, SCALAR: 11, UNION: 1)
Operations:
- Query: Query | fields: announcement, announcements, announcementsConnection, article, articles
- Mutation: Mutation | fields: createAnnouncement, createArticle, deleteAnnouncement, updateAnnouncement, updateArticle
Directives: deprecated, include, skip, specifiedBy (total: 4)

Readable stores: 1
emergencyMessage (args: optional/default) : display=false name= id=2 created_at=2022-12-13T18:25:30.232Z updated_at=2025-09-17T14:41:17.642Z headline=September Board Meeting: September 10th details=Register for our Open Meeting September 10th! link=https://drive.google.com/file/d/1kncUABfyFcsHrLPx1o_GguEFufHA...

Found on 2025-11-16 05:37

340.0 kBytes 8 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3320e84f6535b32e653c5b5683f692048e66e2b2b

GraphQL introspection enabled at /graphql
Types: 403 (by kind: ENUM: 3, INPUT_OBJECT: 97, OBJECT: 291, SCALAR: 11, UNION: 1)
Operations:
- Query: Query | fields: announcement, announcements, announcementsConnection, article, articles
- Mutation: Mutation | fields: createAnnouncement, createArticle, deleteAnnouncement, updateAnnouncement, updateArticle
Directives: deprecated, include, skip, specifiedBy (total: 4)

Readable stores: 1
emergencyMessage (args: optional/default) : updated_at=2025-09-17T14:41:17.642Z headline=September Board Meeting: September 10th details=Register for our Open Meeting September 10th! link=https://drive.google.com/file/d/1kncUABfyFcsHrLPx1o_GguEFufHA... display=false name= id=2 created_at=2022-12-13T18:25:30.232Z

Found on 2025-11-10 06:21

340.0 kBytes 8 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3320e84f6535b32e653c5b5683f6920489d1bba07

GraphQL introspection enabled at /graphql
Types: 403 (by kind: ENUM: 3, INPUT_OBJECT: 97, OBJECT: 291, SCALAR: 11, UNION: 1)
Operations:
- Query: Query | fields: announcement, announcements, announcementsConnection, article, articles
- Mutation: Mutation | fields: createAnnouncement, createArticle, deleteAnnouncement, updateAnnouncement, updateArticle
Directives: deprecated, include, skip, specifiedBy (total: 4)

Readable stores: 1
emergencyMessage (args: optional/default) : name= id=2 created_at=2022-12-13T18:25:30.232Z updated_at=2025-09-17T14:41:17.642Z headline=September Board Meeting: September 10th details=Register for our Open Meeting September 10th! link=https://drive.google.com/file/d/1kncUABfyFcsHrLPx1o_GguEFufHA... display=false

Found on 2025-11-08 00:22

340.0 kBytes 8 rows

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 13.248.244.96
Domain: beepboop.fluentc.ai
Port: 443
URL: https://beepboop.fluentc.ai

First seen 2025-10-20 08:00
Last seen 2026-01-02 07:30
Open for 73 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de9ddc9c5a5

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : responseTimeMs=4 status=ok timestamp=2026-01-02T07:30:19Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip]

Found on 2026-01-02 07:30

71.7 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de9bcff99fe

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=4 status=ok timestamp=2025-12-26T15:55:00Z

Found on 2025-12-26 15:54

72.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de9ee1e1a16

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : responseTimeMs=335 status=ok timestamp=2025-12-25T02:47:58Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip]

Found on 2025-12-25 02:47

72.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de98beba769

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=129 status=ok timestamp=2025-12-23T06:30:41Z

Found on 2025-12-23 06:30

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de90d669301

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=10 status=ok timestamp=2025-12-21T07:44:57Z languagesCount=189

Found on 2025-12-21 07:44

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de9b26b8b8e

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=10 status=ok timestamp=2025-12-19T09:40:04Z

Found on 2025-12-19 09:40

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de939284538

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : timestamp=2025-12-14T13:26:23Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=39 status=ok

Found on 2025-12-14 13:26

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de95eae36ca

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : timestamp=2025-12-13T16:26:18Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=172 status=ok

Found on 2025-12-13 16:26

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de933c099b3

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : responseTimeMs=54 status=ok timestamp=2025-12-01T20:59:14Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip]

Found on 2025-12-01 20:59

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de968eb7f77

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=58 status=ok timestamp=2025-11-29T19:27:43Z languagesCount=189

Found on 2025-11-29 19:27

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de9563134b1

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : status=ok timestamp=2025-11-29T19:27:37Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=44

Found on 2025-11-29 19:27

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de95c90c758

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : status=ok timestamp=2025-11-29T19:27:36Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=62

Found on 2025-11-29 19:27

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de95b90c5e0

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : status=ok timestamp=2025-11-29T19:27:36Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=57

Found on 2025-11-29 19:27

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de91dff5054

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=46 status=ok timestamp=2025-11-29T10:14:17Z

Found on 2025-11-29 10:14

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de9735ac463

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : timestamp=2025-11-27T06:40:58Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=226 status=ok

Found on 2025-11-27 06:40

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de95d3fa19e

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : responseTimeMs=62 status=ok timestamp=2025-11-24T03:16:07Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip]

Found on 2025-11-24 03:16

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de9c439bfc6

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : timestamp=2025-11-24T03:16:08Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=32 status=ok

Found on 2025-11-24 03:16

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de9bce9bca7

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : responseTimeMs=36 status=ok timestamp=2025-11-24T03:16:09Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip]

Found on 2025-11-24 03:16

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de94efecc2f

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=42 status=ok timestamp=2025-11-24T03:16:08Z

Found on 2025-11-24 03:16

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de9cfe1d15b

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=40 status=ok timestamp=2025-11-23T16:18:10Z languagesCount=189

Found on 2025-11-23 16:17

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de925328ad5

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=53 status=ok timestamp=2025-11-20T17:57:31Z

Found on 2025-11-20 17:57

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de9c348e243

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : responseTimeMs=53 status=ok timestamp=2025-11-16T08:27:00Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip]

Found on 2025-11-16 08:26

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250ce0173054

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : responseTimeMs=54 status=ok timestamp=2025-11-14T08:43:27Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip]

Found on 2025-11-14 08:43

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250ca6fba77b

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : responseTimeMs=52 status=ok timestamp=2025-11-12T08:48:03Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip]

Found on 2025-11-12 08:47

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250caa0ef4cb

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : responseTimeMs=38 status=ok timestamp=2025-11-10T11:02:52Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip]

Found on 2025-11-10 11:02

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250c6b388ccb

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : responseTimeMs=41 status=ok timestamp=2025-11-08T09:33:14Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip]

Found on 2025-11-08 09:33

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250cd7d42c00

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : responseTimeMs=233 status=ok timestamp=2025-11-06T16:17:43Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip]

Found on 2025-11-06 16:17

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250cf014d1d6

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=44 status=ok timestamp=2025-11-04T10:45:39Z

Found on 2025-11-04 10:45

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250c360ffb02

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : responseTimeMs=41 status=ok timestamp=2025-11-02T16:48:24Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip]

Found on 2025-11-02 16:48

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250c0f1fcd89

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : status=ok timestamp=2025-11-01T10:53:38Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=73

Found on 2025-11-01 10:53

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250c990cf5cd

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=58 status=ok timestamp=2025-10-30T14:32:20Z

Found on 2025-10-30 14:32

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250cd066e7b7

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : status=ok timestamp=2025-10-28T06:37:04Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=156

Found on 2025-10-28 06:37

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250c2af2b1ef

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=46 status=ok timestamp=2025-10-26T07:48:25Z

Found on 2025-10-26 07:48

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250c3437dac9

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : timestamp=2025-10-24T10:31:32Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=39 status=ok

Found on 2025-10-24 10:31

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250c7112d82d

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=35 status=ok timestamp=2025-10-22T11:26:37Z

Found on 2025-10-22 11:26

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250cfa2e6b3c

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=39 status=ok timestamp=2025-10-20T08:00:12Z

Found on 2025-10-20 08:00

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250c63725d46

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : responseTimeMs=40 status=ok timestamp=2025-10-20T08:00:10Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip]

Found on 2025-10-20 08:00

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250c06d47eca

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=41 status=ok timestamp=2025-10-20T08:00:11Z

Found on 2025-10-20 08:00

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250cbe2fcd44

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=43 status=ok timestamp=2025-10-20T08:00:11Z

Found on 2025-10-20 08:00

63.8 kBytes 5 rows

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 35.71.179.82
Domain: pt.safejourneyhealth.com
Port: 443
URL: https://pt.safejourneyhealth.com

First seen 2025-10-18 22:32
Last seen 2026-01-02 07:23
Open for 75 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de97e628e1b

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=5 status=ok timestamp=2026-01-02T07:23:10Z languagesCount=189

Found on 2026-01-02 07:23

71.7 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de9a2cd399a

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : timestamp=2026-01-02T06:58:35Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=4 status=ok

Found on 2026-01-02 06:58

71.7 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de90825110a

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=22 status=ok timestamp=2025-12-30T09:23:12Z

Found on 2025-12-30 09:23

71.7 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de9aa8e56e1

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : responseTimeMs=8 status=ok timestamp=2025-12-27T06:52:47Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip]

Found on 2025-12-27 06:52

71.7 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de9a6e7b896

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=121 status=ok timestamp=2025-12-27T00:10:31Z

Found on 2025-12-27 00:10

71.7 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de9f0e673b6

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=123 status=ok timestamp=2025-12-25T02:39:14Z

Found on 2025-12-25 02:39

72.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de94950ffeb

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : status=ok timestamp=2025-12-24T22:20:27Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=19

Found on 2025-12-24 22:20

72.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de929dd9bd5

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : responseTimeMs=7 status=ok timestamp=2025-12-23T06:52:17Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip]

Found on 2025-12-23 06:52

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de92513dc82

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : responseTimeMs=10 status=ok timestamp=2025-12-23T00:22:02Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip]

Found on 2025-12-23 00:21

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de91950b26e

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=106 status=ok timestamp=2025-12-21T09:15:12Z

Found on 2025-12-21 09:15

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de98426df5e

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : status=ok timestamp=2025-12-21T06:56:19Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=589

Found on 2025-12-21 06:56

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de91c335e4a

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=72 status=ok timestamp=2025-12-19T11:10:37Z

Found on 2025-12-19 11:10

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de9b4d2522a

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=99 status=ok timestamp=2025-12-19T08:27:16Z languagesCount=189

Found on 2025-12-19 08:27

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de975391cd5

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2025-12-18 00:15

71.1 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa3
```
GraphQL introspection enabled at /graphql
```
Found on 2025-12-17 02:56

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de9d99706f5

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : responseTimeMs=277 status=ok timestamp=2025-12-16T19:37:46Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip]

Found on 2025-12-16 19:37

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de9ec8f10cc

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : responseTimeMs=55 status=ok timestamp=2025-12-13T12:04:43Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip]

Found on 2025-12-13 12:04

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de911004a35

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=351 status=ok timestamp=2025-12-12T13:31:50Z

Found on 2025-12-12 13:31

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de9d39a60b7

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : responseTimeMs=73 status=ok timestamp=2025-12-10T18:35:58Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip]

Found on 2025-12-10 18:35

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de9f4ca4539

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=204 status=ok timestamp=2025-12-01T10:20:56Z

Found on 2025-12-01 10:20

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de9e783f7a8

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=50 status=ok timestamp=2025-12-01T09:17:09Z languagesCount=189

Found on 2025-12-01 09:17

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de94c93ceb6

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=114 status=ok timestamp=2025-11-29T09:01:59Z

Found on 2025-11-29 09:01

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de9abcd717b

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : responseTimeMs=62 status=ok timestamp=2025-11-28T17:55:17Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip]

Found on 2025-11-28 17:54

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de9e41cd877

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : responseTimeMs=42 status=ok timestamp=2025-11-26T23:28:38Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip]

Found on 2025-11-26 23:28

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de99b9949d6

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : responseTimeMs=75 status=ok timestamp=2025-11-26T04:28:18Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip]

Found on 2025-11-26 04:28

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250cdf7061c5

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : status=ok timestamp=2025-11-10T19:51:54Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=104

Found on 2025-11-10 19:51

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250c74195b93

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=293 status=ok timestamp=2025-11-10T19:37:19Z

Found on 2025-11-10 19:36

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250c9b35964d

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : status=ok timestamp=2025-11-08T17:05:22Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=161

Found on 2025-11-08 17:05

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250ca256b3ab

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=119 status=ok timestamp=2025-11-08T11:41:10Z

Found on 2025-11-08 11:41

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250c9db9d51c

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : status=ok timestamp=2025-11-06T23:03:41Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=63

Found on 2025-11-06 23:03

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250c7533134d

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=52 status=ok timestamp=2025-11-06T17:49:16Z

Found on 2025-11-06 17:48

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250c7bf01a9b

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : timestamp=2025-11-04T23:38:48Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=72 status=ok

Found on 2025-11-04 23:38

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250c816af287

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=202 status=ok timestamp=2025-11-04T21:35:46Z

Found on 2025-11-04 21:35

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250ce9cb5a3e

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=66 status=ok timestamp=2025-11-03T01:56:43Z

Found on 2025-11-03 01:56

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250ccf272109

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=43 status=ok timestamp=2025-11-02T15:48:51Z

Found on 2025-11-02 15:48

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250ce8c4e6b6

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : timestamp=2025-11-01T16:55:14Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=36 status=ok

Found on 2025-11-01 16:55

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250ca122c6ab

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : timestamp=2025-10-29T01:58:39Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=128 status=ok

Found on 2025-10-29 01:58

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250cd70a32fe

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=55 status=ok timestamp=2025-10-28T13:42:25Z

Found on 2025-10-28 13:42

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250cf8c4a660

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : responseTimeMs=48 status=ok timestamp=2025-10-26T22:44:25Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip]

Found on 2025-10-26 22:44

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250cb4562318

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=36 status=ok timestamp=2025-10-26T20:20:08Z

Found on 2025-10-26 20:20

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250ce8b3ee0b

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=70 status=ok timestamp=2025-10-25T01:49:04Z

Found on 2025-10-25 01:49

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250c31eeb592

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : timestamp=2025-10-24T20:22:33Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=47 status=ok

Found on 2025-10-24 20:22

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250c013fe4fb

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=48 status=ok timestamp=2025-10-23T04:36:04Z

Found on 2025-10-23 04:35

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250c07928da4

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : status=ok timestamp=2025-10-22T22:54:35Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=60

Found on 2025-10-22 22:54

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250cd382f4d9

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : timestamp=2025-10-21T00:32:30Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=43 status=ok

Found on 2025-10-21 00:32

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250c5fdfcd5d

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : timestamp=2025-10-20T23:01:35Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=42 status=ok

Found on 2025-10-20 23:01

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250c16c1613d

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : timestamp=2025-10-18T22:32:49Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=47 status=ok

Found on 2025-10-18 22:32

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250c2cded388

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=36 status=ok timestamp=2025-10-18T22:32:48Z

Found on 2025-10-18 22:32

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250c1b4ac847

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : status=ok timestamp=2025-10-18T22:32:48Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=35

Found on 2025-10-18 22:32

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250cc3294cf2

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : responseTimeMs=34 status=ok timestamp=2025-10-18T22:32:48Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip]

Found on 2025-10-18 22:32

63.8 kBytes 5 rows

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 75.2.60.68
Domain: bmr-console-prod.navybmr.com
Port: 80
URL: http://bmr-console-prod.navybmr.com

First seen 2025-04-28 15:38
Last seen 2026-01-02 06:51
Open for 248 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9d89c0562b89c0562b89c0562b89c0562b
```
Found 1 files trough .DS_Store spidering:

/bmr
```
  Found on 2026-01-02 06:51
Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 75.2.60.68
Domain: www.sinteseapd.com.br
Port: 443
URL: https://www.sinteseapd.com.br

First seen 2025-09-17 15:27
Last seen 2026-01-02 06:27
Open for 106 days

Severity: medium
Fingerprint: 5f32cf5d6962f09c5a2cc21a5a2cc21aa2562ae829de5c5eeeb893976f018855

Found 82 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/account-orange.svg
/account-white.svg
/add-contact.png
/add-group.png
/alert.png
/analysis.png
/analysis_glass.png
/Análise de sistemas.svg
/Análise de sistemas orange.svg
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/Bronze@2x.png
/calculations.png
/calculator.png
/contacts.png
/content.png
/dados-cliente.csv
/dados-cliente_test.csv
/data_96285.svg
/database.svg
/down_arrow.svg
/email.png
/empreendimentos.png
/engineer.png
/favicon.ico
/financial.png
/googlemaps.png
/Gravity-Bold.otf
/Gravity-BoldItalic.otf
/Gravity-Book.otf
/Gravity-BookItalic.otf
/Gravity-Italic.otf
/Gravity-Light.otf
/Gravity-LightItalic.otf
/Gravity-Regular.otf
/Gravity-UltraLight.otf
/Gravity-UltraLightItalic.otf
/house.png
/icons8-sonometer-50.png
/js
/js/excel-bootstrap-table-filter-bundle.js
/js/excel-bootstrap-table-filter-style.css
/js/jquery.toast.js
/left-arrow.svg
/lista_de_materiais.csv
/lista_materiais.csv
/login_img.png
/Logo assinatura.svg
/logout.svg
/materiais.csv
/medical-report.png
/new-house.png
/notes.png
/ouro.png
/Ouro@2x.png
/pageSintese.png
/plan.png
/prata.png
/Prata@2x.png
/presentation.png
/project-orange.svg
/project-white.svg
/rating.png
/report.png
/Resumo orange.svg
/Resumo.svg
/robots.txt
/sair_img.svg
/sintese_nome.png
/sintese_nome_fundoClaro.png
/sketch.png
/skyline.png
/sound.png
/Tabela de clientes orange.svg
/Tabela de clientes.svg
/target.png
/user.png
/value.png
/warning.png

Found on 2026-01-02 06:27

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: api.riskiiit.com
Port: 80
URL: http://api.riskiiit.com

First seen 2025-12-12 18:42
Last seen 2026-01-02 06:21
Open for 20 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3e3a938149bf8cad8cd201f9a37a773c42fe184dc

GraphQL introspection enabled at /graphql
Types: 78 (by kind: ENUM: 4, INPUT_OBJECT: 13, INTERFACE: 7, OBJECT: 50, SCALAR: 4)
Operations:
- Query: Query | fields: balance, balances, campaignReferralCode, ping, user
- Mutation: Mutation | fields: launchFreePlay, launchGame, requestWithdrawal, spinRoulette, startBlackjack
- Subscription: Subscription | fields: balances, liveWins
Directives: authorized, deprecated, include, oneOf, skip, specifiedBy (total: 6)

Found on 2026-01-02 06:21

92.6 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa34fbdc8b17b26a1b349719616a6ddb558f671a2e0

GraphQL introspection enabled at /graphql
Types: 76 (by kind: ENUM: 4, INPUT_OBJECT: 13, INTERFACE: 7, OBJECT: 48, SCALAR: 4)
Operations:
- Query: Query | fields: balance, balances, games, ping, user
- Mutation: Mutation | fields: launchFreePlay, launchGame, requestWithdrawal, spinRoulette, startBlackjack
- Subscription: Subscription | fields: balances, liveWins
Directives: authorized, deprecated, include, oneOf, skip, specifiedBy (total: 6)

Found on 2025-12-30 11:42

88.9 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3f322c887d5552335ff5f91684aa4cafa5e5314ca

GraphQL introspection enabled at /graphql
Types: 81 (by kind: ENUM: 7, INPUT_OBJECT: 13, INTERFACE: 7, OBJECT: 50, SCALAR: 4)
Operations:
- Query: Query | fields: balance, balances, games, ping, user
- Mutation: Mutation | fields: launchFreePlay, launchGame, requestWithdrawal, spinRoulette, startBlackjack
- Subscription: Subscription | fields: balances, liveWins
Directives: authorized, deprecated, include, oneOf, skip, specifiedBy (total: 6)

Found on 2025-12-18 17:16

92.6 kBytes

Create report

GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: api-v2-staging.coflyt.com
Port: 80
URL: http://api-v2-staging.coflyt.com

First seen 2025-11-24 00:46
Last seen 2026-01-02 06:21
Open for 39 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa3
```
GraphQL introspection enabled at /graphql
```
  Found on 2026-01-02 06:21
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 75.2.60.68
Domain: hex.spetrosyan.com
Port: 443
URL: https://hex.spetrosyan.com

First seen 2025-03-14 06:34
Last seen 2026-01-02 05:30
Open for 293 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c7cf176427cf176423f3e94de326aceec326aceec326aceec
```
Found 2 files trough .DS_Store spidering:

/assets
/stl
```
  Found on 2026-01-02 05:30
Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 35.71.179.82
Domain: www.itateam.com.tw
Port: 443
URL: https://www.itateam.com.tw

First seen 2025-11-19 01:43
Last seen 2026-01-02 05:18
Open for 44 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3f516dfd994cb55bb21a21274ba4c18cbb879074c

GraphQL introspection enabled at /graphql
Types: 42 (by kind: ENUM: 3, INPUT_OBJECT: 9, INTERFACE: 1, OBJECT: 25, SCALAR: 4)
Operations:
- Query: Query | fields: newsArticles, node, projects, user
- Mutation: Mutation | fields: addNewsArticle, addProject, modifyNewsArticle, modifyProject, removeProject
Directives: deprecated, include, skip (total: 3)

Readable stores: 1
user (args: none) : id=VXNlcjpub3QgbG9naW4gdXNlcg== username= password=

Found on 2026-01-02 05:18

41.4 kBytes 3 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3f516dfd994cb55bb21a21274ba4c18cb377db778

GraphQL introspection enabled at /graphql
Types: 42 (by kind: ENUM: 3, INPUT_OBJECT: 9, INTERFACE: 1, OBJECT: 25, SCALAR: 4)
Operations:
- Query: Query | fields: newsArticles, node, projects, user
- Mutation: Mutation | fields: addNewsArticle, addProject, modifyNewsArticle, modifyProject, removeProject
Directives: deprecated, include, skip (total: 3)

Readable stores: 1
user (args: none) : username= password= id=VXNlcjpub3QgbG9naW4gdXNlcg==

Found on 2025-12-24 11:45

41.4 kBytes 3 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3f516dfd994cb55bb21a21274ba4c18cb9b0ca7cc

GraphQL introspection enabled at /graphql
Types: 42 (by kind: ENUM: 3, INPUT_OBJECT: 9, INTERFACE: 1, OBJECT: 25, SCALAR: 4)
Operations:
- Query: Query | fields: newsArticles, node, projects, user
- Mutation: Mutation | fields: addNewsArticle, addProject, modifyNewsArticle, modifyProject, removeProject
Directives: deprecated, include, skip (total: 3)

Readable stores: 1
user (args: none) : password= id=VXNlcjpub3QgbG9naW4gdXNlcg== username=

Found on 2025-12-22 13:38

41.4 kBytes 3 rows

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: dev.api.moona.health
Port: 80
URL: http://dev.api.moona.health

First seen 2025-11-22 01:13
Last seen 2026-01-02 05:06
Open for 41 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa32061ca5fee69eb6d4564c03682f3eef8ab8c3b58

GraphQL introspection enabled at /graphql
Types: 154 (by kind: ENUM: 19, INPUT_OBJECT: 67, OBJECT: 63, SCALAR: 5)
Operations:
- Query: Query | fields: ReferringProvidersDataFromAdmin, adminInfo, careProviderInfo, checkLeadPatientExistFromAdmin, checkNpsIsCompleted
- Mutation: Mutation | fields: cancelAppointment, checkPayersEligibility, checkPayersEligibilityV2, completeFormFromCareProvider, completeFormFromPatient
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2026-01-02 05:06

218.0 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37bda0683df38ed818f30fb6acdfe7f5e2cb2778a

GraphQL introspection enabled at /graphql
Types: 151 (by kind: ENUM: 19, INPUT_OBJECT: 64, OBJECT: 63, SCALAR: 5)
Operations:
- Query: Query | fields: ReferringProvidersDataFromAdmin, adminInfo, careProviderInfo, checkLeadPatientExistFromAdmin, checkNpsIsCompleted
- Mutation: Mutation | fields: cancelAppointment, checkPayersEligibility, checkPayersEligibilityV2, completeGAD, completeIsi
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2025-12-26 14:15

214.8 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa302af5d9011c6b654e85e3af391c1bb737940635b

GraphQL introspection enabled at /graphql
Types: 149 (by kind: ENUM: 19, INPUT_OBJECT: 62, OBJECT: 63, SCALAR: 5)
Operations:
- Query: Query | fields: ReferringProvidersDataFromAdmin, adminInfo, careProviderInfo, checkLeadPatientExistFromAdmin, checkNpsIsCompleted
- Mutation: Mutation | fields: cancelAppointment, checkPayersEligibility, checkPayersEligibilityV2, completeGAD, completeIsi
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2025-12-22 16:34

212.5 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ca0e38922cf03c620f3bf93d1adb63cd46985169

GraphQL introspection enabled at /graphql
Types: 143 (by kind: ENUM: 18, INPUT_OBJECT: 60, OBJECT: 60, SCALAR: 5)
Operations:
- Query: Query | fields: ReferringProvidersDataFromAdmin, adminInfo, careProviderInfo, checkLeadPatientExistFromAdmin, checkNpsIsCompleted
- Mutation: Mutation | fields: cancelAppointment, checkPayersEligibility, checkPayersEligibilityV2, completeGAD, completeIsi
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2025-12-20 15:38

205.9 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3dcc7bbb3b7e304b1afb86b65521b3b0542536b91

GraphQL introspection enabled at /graphql
Types: 133 (by kind: ENUM: 16, INPUT_OBJECT: 56, OBJECT: 56, SCALAR: 5)
Operations:
- Query: Query | fields: adminInfo, careProviderInfo, checkLeadPatientExistFromAdmin, checkNpsIsCompleted, checkPatientExist
- Mutation: Mutation | fields: cancelAppointment, checkPayersEligibility, checkPayersEligibilityV2, completeGAD, completeIsi
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2025-12-16 12:45

193.2 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ef707c4e81ae34be3ce23d2a64766d9ed120cbca

GraphQL introspection enabled at /graphql
Types: 129 (by kind: ENUM: 16, INPUT_OBJECT: 53, OBJECT: 55, SCALAR: 5)
Operations:
- Query: Query | fields: adminInfo, careProviderInfo, checkLeadPatientExistFromAdmin, checkNpsIsCompleted, checkPatientExist
- Mutation: Mutation | fields: cancelAppointment, checkPayersEligibility, checkPayersEligibilityV2, completeGAD, completeIsi
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2025-12-10 08:52

187.3 kBytes

Create report

GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: central.itva.ai
Port: 443
URL: https://central.itva.ai

First seen 2025-11-14 01:23
Last seen 2026-01-02 05:05
Open for 49 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa3b2f7aa3d804d3cdfb50645ee76cdf19468324464
```
GraphQL introspection enabled at /graphql
Types: 14 (by kind: ENUM: 2, OBJECT: 9, SCALAR: 3)
Operations:
- Query: Query | fields: device, devices
- Mutation: Mutation | fields: test
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 0
```
  Found on 2026-01-02 05:05
  
  20.7 kBytes
Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: api.kindest.com
Port: 443
URL: https://api.kindest.com

First seen 2025-10-20 19:32
Last seen 2026-01-02 04:35
Open for 73 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa327c391d5fb244e9704eb68845ec9aee253f436ee

GraphQL introspection enabled at /graphql
Types: 509 (by kind: ENUM: 51, INPUT_OBJECT: 219, INTERFACE: 3, OBJECT: 222, SCALAR: 6, UNION: 8)
Operations:
- Query: Query | fields: allocations, emailFunnel, segmentation, smsFunnel, weekdays
- Mutation: Mutation | fields: createAllocation, deleteAllocation, setAllocationVisibility, signInWithEmail, updateAllocation
- Subscription: Subscription | fields: emailAssistantResponse
Directives: auth, deprecated, include, oneOf, skip, specifiedBy (total: 6)

Found on 2026-01-02 04:35

490.0 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa371421ba1ed89fd63261b24587bdcd76ef21c6b7a

GraphQL introspection enabled at /graphql
Types: 506 (by kind: ENUM: 51, INPUT_OBJECT: 218, INTERFACE: 3, OBJECT: 220, SCALAR: 6, UNION: 8)
Operations:
- Query: Query | fields: allocations, emailFunnel, segmentation, smsFunnel, weekdays
- Mutation: Mutation | fields: createAllocation, deleteAllocation, setAllocationVisibility, signInWithEmail, updateAllocation
- Subscription: Subscription | fields: emailAssistantResponse
Directives: auth, deprecated, include, oneOf, skip, specifiedBy (total: 6)

Found on 2025-11-12 19:08

485.8 kBytes

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: staging.api.kindest.com
Port: 443
URL: https://staging.api.kindest.com

First seen 2025-11-13 01:23
Last seen 2026-01-02 04:32
Open for 50 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa367053df25c4beb02cc61be19c9447e6dcb53d5f7

GraphQL introspection enabled at /graphql
Types: 501 (by kind: ENUM: 50, INPUT_OBJECT: 218, INTERFACE: 3, OBJECT: 216, SCALAR: 6, UNION: 8)
Operations:
- Query: Query | fields: allocations, emailFunnel, segmentation, smsFunnel, weekdays
- Mutation: Mutation | fields: createAllocation, deleteAllocation, setAllocationVisibility, signInWithEmail, updateAllocation
- Subscription: Subscription | fields: emailAssistantResponse
Directives: auth, deprecated, include, oneOf, skip, specifiedBy (total: 6)

Found on 2026-01-02 04:32

475.3 kBytes

Create report

GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: stg-api.bookkarte.com
Port: 80
URL: http://stg-api.bookkarte.com

First seen 2025-11-18 00:38
Last seen 2026-01-02 04:12
Open for 45 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa3ab6740d7728c1d05b6b2dfb46636232edf79039e
```
GraphQL introspection enabled at /graphql
Types: 94 (by kind: ENUM: 2, INPUT_OBJECT: 31, OBJECT: 54, SCALAR: 7)
Operations:
- Query: Query | fields: accessToken, activeCatalogue, adminAccessToken, adminStaff, adminStaffs
- Mutation: Mutation | fields: applyBookCouponLetter, approveSelectedBooks, confirmBookOrder, createBookCoupon, createBookCouponPayment
Directives: deprecated, include, skip (total: 3)
```
  Found on 2026-01-02 04:12
  
  114.6 kBytes
Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: admin.ontariotrails.ca
Port: 443
URL: https://admin.ontariotrails.ca

First seen 2025-11-24 01:26
Last seen 2026-01-02 04:11
Open for 39 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa33777dc63ebf6e3a15a1b53f2b2a4974be7d1a52f

GraphQL introspection enabled at /graphql
Types: 224 (by kind: ENUM: 3, INPUT_OBJECT: 41, OBJECT: 170, SCALAR: 10)
Operations:
- Query: Query | fields: activities, activities_aggregated, activities_by_id, banners, banners_by_id
- Subscription: Subscription | fields: activities_mutated, banners_mutated, calendar_months_mutated, cities_mutated, directus_files_mutated
Directives: deprecated, include, skip (total: 3)

Readable stores: 0

Found on 2026-01-02 04:11

431.0 kBytes

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 75.2.60.68
Domain: aviation-sandbox.triangleservices.com
Port: 80
URL: http://aviation-sandbox.triangleservices.com

First seen 2025-11-24 16:50
Last seen 2026-01-02 04:10
Open for 38 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c0215adfc0215adfc5e6c7c680a89b7f9a70e0b7ee0dcc142
```
Found 4 files trough .DS_Store spidering:

/flags
/images
/packs
/reports
```
  Found on 2026-01-02 04:10
Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: develop-api.certify-ed.com
Port: 443
URL: https://develop-api.certify-ed.com

First seen 2025-11-21 04:38
Last seen 2026-01-02 03:41
Open for 41 days

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d6d6f7266f4bfe653dec1f4d939048a6e996486034

GraphQL introspection enabled at /api/graphql
Types: 272 (by kind: ENUM: 18, INPUT_OBJECT: 83, INTERFACE: 1, OBJECT: 164, SCALAR: 6)
Operations:
- Query: RootQueryType | fields: accounts, certificationExam, certificationProgresses, courses, currentAccount
- Mutation: RootMutationType | fields: acceptTerms, addCourseAssets, addSimulation, addVrVideoExample, cancelReminder
- Subscription: RootSubscriptionType | fields: notificationFeed, seedCourseFeed
Directives: include, skip (total: 2)

Found on 2026-01-02 03:41

213.5 kBytes

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 99.83.220.108
Domain: de.safejourneyhealth.com
Port: 443
URL: https://de.safejourneyhealth.com

First seen 2025-10-17 02:44
Last seen 2026-01-02 03:14
Open for 77 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de99bf3de0e

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=8 status=ok timestamp=2026-01-02T03:14:34Z languagesCount=189

Found on 2026-01-02 03:14

71.7 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de9e4c9f67a

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=4 status=ok timestamp=2026-01-02T03:14:34Z

Found on 2026-01-02 03:14

71.7 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de9a210b661

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : responseTimeMs=5 status=ok timestamp=2025-12-26T10:24:41Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip]

Found on 2025-12-26 10:24

72.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de92041ec62

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=5 status=ok timestamp=2025-12-26T10:24:40Z

Found on 2025-12-26 10:24

72.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de97fef3fb5

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : responseTimeMs=164 status=ok timestamp=2025-12-24T06:37:44Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip]

Found on 2025-12-24 06:37

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de91f09e931

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=15 status=ok timestamp=2025-12-24T05:17:57Z

Found on 2025-12-24 05:17

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de975391cd5

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2025-12-22 06:25

71.1 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de9d71bac58

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : status=ok timestamp=2025-12-20T19:44:40Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=4

Found on 2025-12-20 19:44

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de99e64c36c

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=198 status=ok timestamp=2025-12-20T19:44:40Z

Found on 2025-12-20 19:44

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de947fcf9b0

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : status=ok timestamp=2025-12-19T01:35:18Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=134

Found on 2025-12-19 01:35

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de9ae049c84

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : responseTimeMs=169 status=ok timestamp=2025-12-19T01:35:16Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip]

Found on 2025-12-19 01:35

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de9a6eecc90

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : timestamp=2025-12-16T18:59:32Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=49 status=ok

Found on 2025-12-16 18:59

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de9174c2386

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=47 status=ok timestamp=2025-12-16T18:59:30Z

Found on 2025-12-16 18:59

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de905fbe10c

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=43 status=ok timestamp=2025-12-14T08:45:25Z

Found on 2025-12-14 08:45

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de9bcb21b2f

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=181 status=ok timestamp=2025-12-14T08:45:23Z

Found on 2025-12-14 08:45

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de95a67496b

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : responseTimeMs=41 status=ok timestamp=2025-12-13T15:40:31Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip]

Found on 2025-12-13 15:40

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de9b79014c1

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : responseTimeMs=51 status=ok timestamp=2025-12-13T15:40:30Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip]

Found on 2025-12-13 15:40

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de9e24755a7

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : status=ok timestamp=2025-12-11T10:13:00Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=55

Found on 2025-12-11 10:12

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa3
```
GraphQL introspection enabled at /graphql
```
Found on 2025-12-11 10:12

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de9d25c32a0

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : responseTimeMs=36 status=ok timestamp=2025-12-08T07:40:57Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip]

Found on 2025-12-08 07:40

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de95ee89d54

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=36 status=ok timestamp=2025-12-08T07:40:59Z

Found on 2025-12-08 07:40

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de951464900

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : timestamp=2025-12-08T07:40:57Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=72 status=ok

Found on 2025-12-08 07:40

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de92d4a2dde

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=62 status=ok timestamp=2025-12-08T07:40:58Z

Found on 2025-12-08 07:40

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de947153e20

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=182 status=ok timestamp=2025-12-08T01:20:42Z

Found on 2025-12-08 01:20

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fd99bd59bebaca3bd693ab7abd216de968435ce8

GraphQL introspection enabled at /graphql
Types: 55 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, debugTranslationMemory, fetchSiteOptions
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=42 status=ok timestamp=2025-12-08T01:20:43Z

Found on 2025-12-08 01:20

71.1 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250cdea4ea68

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : responseTimeMs=160 status=ok timestamp=2025-11-10T14:09:19Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip]

Found on 2025-11-10 14:08

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250c4744d871

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=55 status=ok timestamp=2025-11-10T14:09:11Z

Found on 2025-11-10 14:08

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250c6e13a255

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=42 status=ok timestamp=2025-11-08T10:38:21Z

Found on 2025-11-08 10:38

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250c7342cb4f

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=43 status=ok timestamp=2025-11-08T10:38:13Z

Found on 2025-11-08 10:38

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250c59b07d92

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=46 status=ok timestamp=2025-11-07T08:18:59Z

Found on 2025-11-07 08:18

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250c1946efab

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=55 status=ok timestamp=2025-11-07T04:22:44Z

Found on 2025-11-07 04:22

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250c98716d59

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : responseTimeMs=51 status=ok timestamp=2025-11-05T07:01:51Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip]

Found on 2025-11-05 07:01

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250ce445ff0e

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : status=ok timestamp=2025-11-05T07:01:37Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=177

Found on 2025-11-05 07:01

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250cc193aaa9

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : responseTimeMs=43 status=ok timestamp=2025-11-03T09:47:52Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip]

Found on 2025-11-03 09:47

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250c4fbd9870

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=53 status=ok timestamp=2025-11-03T09:47:50Z languagesCount=189

Found on 2025-11-03 09:47

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250c7794b3ea

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=34 status=ok timestamp=2025-11-01T22:39:24Z

Found on 2025-11-01 22:39

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250ce84b26de

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=58 status=ok timestamp=2025-11-01T22:39:22Z

Found on 2025-11-01 22:39

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250c1e1514e2

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : responseTimeMs=40 status=ok timestamp=2025-10-29T04:45:07Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip]

Found on 2025-10-29 04:45

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250ca9b9a697

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=31 status=ok timestamp=2025-10-29T04:45:08Z

Found on 2025-10-29 04:45

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250c6e5418b8

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : responseTimeMs=63 status=ok timestamp=2025-10-27T03:52:23Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip]

Found on 2025-10-27 03:52

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250c6d1f2463

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=48 status=ok timestamp=2025-10-27T03:52:23Z

Found on 2025-10-27 03:52

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250c75ab50c4

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : status=ok timestamp=2025-10-25T03:43:48Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=31

Found on 2025-10-25 03:43

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250c56b3034b

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : timestamp=2025-10-25T03:43:47Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=44 status=ok

Found on 2025-10-25 03:43

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250cbc85d027

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : responseTimeMs=91 status=ok timestamp=2025-10-23T02:55:09Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip]

Found on 2025-10-23 02:54

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250c14a2902c

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=40 status=ok timestamp=2025-10-23T02:55:13Z languagesCount=189

Found on 2025-10-23 02:54

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250cf3bb8ccd

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=37 status=ok timestamp=2025-10-21T05:25:14Z

Found on 2025-10-21 05:24

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250c2f2cd6ff

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=45 status=ok timestamp=2025-10-21T05:24:27Z

Found on 2025-10-21 05:24

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250c889d9802

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=44 status=ok timestamp=2025-10-19T12:43:29Z

Found on 2025-10-19 12:43

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250ca74f605d

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip] responseTimeMs=559 status=ok timestamp=2025-10-19T01:32:54Z languagesCount=189

Found on 2025-10-19 01:32

63.8 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37f806d8730375a35f6fa2301eafb250c59bd1fa4

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 40, SCALAR: 7)
Operations:
- Query: Query | fields: batchTranslationDetail, batchTranslationHistory, batchTranslationProgress, fetchSiteOptions, findSitePages
- Mutation: Mutation | fields: processAllSitemapUrls, testField
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
languageServiceHealth (args: optional/default) : responseTimeMs=58 status=ok timestamp=2025-10-17T02:44:20Z languagesCount=189 languagesSample=[Аҧсуа Aceh Lwo Afrikaans Shqip]

Found on 2025-10-17 02:44

63.8 kBytes 5 rows

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 99.83.220.108
Domain: dev-bff.weschools.we.org
Port: 443
URL: https://dev-bff.weschools.we.org

First seen 2025-11-10 01:31
Last seen 2026-01-02 03:01
Open for 53 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa39563946f31f9df3d5190f063c00b526588d29d1e

GraphQL introspection enabled at /graphql
Types: 78 (by kind: ENUM: 7, INPUT_OBJECT: 4, INTERFACE: 2, OBJECT: 60, SCALAR: 4, UNION: 1)
Operations:
- Query: Query | fields: _empty, filterPage, page, searchPage, settings
- Mutation: Mutation | fields: _empty, updateFormState, updateLocationDetails, updateRating
Directives: deprecated, include, skip (total: 3)

Readable stores: 2
settings (args: none) : id=459f063d-a13b-435a-80ee-e6165a933562 ratingFormId=4214648
ratingForm (args: none) : id=3e176d87-0cc6-4198-81dc-11bbaa2080d5 formId=4214648 formHeader=Rate this resource formSubmitButtonText=SUBMIT formSubmittedHeader=Thanks for rating! formSubmittedBodyText=Your feedback is helpful to continuously improve our resources! formDismissButtonText=CLOSE

Found on 2026-01-02 03:01

209.6 kBytes 9 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa39563946f31f9df3d5190f063c00b5265801894ce

GraphQL introspection enabled at /graphql
Types: 78 (by kind: ENUM: 7, INPUT_OBJECT: 4, INTERFACE: 2, OBJECT: 60, SCALAR: 4, UNION: 1)
Operations:
- Query: Query | fields: _empty, filterPage, page, searchPage, settings
- Mutation: Mutation | fields: _empty, updateFormState, updateLocationDetails, updateRating
Directives: deprecated, include, skip (total: 3)

Readable stores: 2
settings (args: none) : id=459f063d-a13b-435a-80ee-e6165a933562 ratingFormId=4214648
ratingForm (args: none) : formDismissButtonText=CLOSE id=3e176d87-0cc6-4198-81dc-11bbaa2080d5 formId=4214648 formHeader=Rate this resource formSubmitButtonText=SUBMIT formSubmittedHeader=Thanks for rating! formSubmittedBodyText=Your feedback is helpful to continuously improve our resources!

Found on 2025-12-24 12:29

209.6 kBytes 9 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa39563946f31f9df3d5190f063c00b52658d6d0e06

GraphQL introspection enabled at /graphql
Types: 78 (by kind: ENUM: 7, INPUT_OBJECT: 4, INTERFACE: 2, OBJECT: 60, SCALAR: 4, UNION: 1)
Operations:
- Query: Query | fields: _empty, filterPage, page, searchPage, settings
- Mutation: Mutation | fields: _empty, updateFormState, updateLocationDetails, updateRating
Directives: deprecated, include, skip (total: 3)

Readable stores: 2
settings (args: none) : id=459f063d-a13b-435a-80ee-e6165a933562 ratingFormId=4214648
ratingForm (args: none) : formSubmitButtonText=SUBMIT formSubmittedHeader=Thanks for rating! formSubmittedBodyText=Your feedback is helpful to continuously improve our resources! formDismissButtonText=CLOSE id=3e176d87-0cc6-4198-81dc-11bbaa2080d5 formId=4214648 formHeader=Rate this resource

Found on 2025-12-22 18:41

209.6 kBytes 9 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa39563946f31f9df3d5190f063c00b526570c77b38

GraphQL introspection enabled at /graphql
Types: 78 (by kind: ENUM: 7, INPUT_OBJECT: 4, INTERFACE: 2, OBJECT: 60, SCALAR: 4, UNION: 1)
Operations:
- Query: Query | fields: _empty, filterPage, page, searchPage, settings
- Mutation: Mutation | fields: _empty, updateFormState, updateLocationDetails, updateRating
Directives: deprecated, include, skip (total: 3)

Readable stores: 2
settings (args: none) : ratingFormId=4214648 id=459f063d-a13b-435a-80ee-e6165a933562
ratingForm (args: none) : formDismissButtonText=CLOSE id=3e176d87-0cc6-4198-81dc-11bbaa2080d5 formId=4214648 formHeader=Rate this resource formSubmitButtonText=SUBMIT formSubmittedHeader=Thanks for rating! formSubmittedBodyText=Your feedback is helpful to continuously improve our resources!

Found on 2025-12-20 21:12

209.6 kBytes 9 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa39563946f31f9df3d5190f063c00b52653967b946

GraphQL introspection enabled at /graphql
Types: 78 (by kind: ENUM: 7, INPUT_OBJECT: 4, INTERFACE: 2, OBJECT: 60, SCALAR: 4, UNION: 1)
Operations:
- Query: Query | fields: _empty, filterPage, page, searchPage, settings
- Mutation: Mutation | fields: _empty, updateFormState, updateLocationDetails, updateRating
Directives: deprecated, include, skip (total: 3)

Readable stores: 2
settings (args: none) : id=459f063d-a13b-435a-80ee-e6165a933562 ratingFormId=4214648
ratingForm (args: none) : formSubmittedHeader=Thanks for rating! formSubmittedBodyText=Your feedback is helpful to continuously improve our resources! formDismissButtonText=CLOSE id=3e176d87-0cc6-4198-81dc-11bbaa2080d5 formId=4214648 formHeader=Rate this resource formSubmitButtonText=SUBMIT

Found on 2025-12-14 11:07

209.6 kBytes 9 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa39563946f31f9df3d5190f063c00b5265c0b9e720

GraphQL introspection enabled at /graphql
Types: 78 (by kind: ENUM: 7, INPUT_OBJECT: 4, INTERFACE: 2, OBJECT: 60, SCALAR: 4, UNION: 1)
Operations:
- Query: Query | fields: _empty, filterPage, page, searchPage, settings
- Mutation: Mutation | fields: _empty, updateFormState, updateLocationDetails, updateRating
Directives: deprecated, include, skip (total: 3)

Readable stores: 2
settings (args: none) : ratingFormId=4214648 id=459f063d-a13b-435a-80ee-e6165a933562
ratingForm (args: none) : id=3e176d87-0cc6-4198-81dc-11bbaa2080d5 formId=4214648 formHeader=Rate this resource formSubmitButtonText=SUBMIT formSubmittedHeader=Thanks for rating! formSubmittedBodyText=Your feedback is helpful to continuously improve our resources! formDismissButtonText=CLOSE

Found on 2025-12-13 17:16

209.6 kBytes 9 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa39563946f31f9df3d5190f063c00b5265d42a3d24

GraphQL introspection enabled at /graphql
Types: 78 (by kind: ENUM: 7, INPUT_OBJECT: 4, INTERFACE: 2, OBJECT: 60, SCALAR: 4, UNION: 1)
Operations:
- Query: Query | fields: _empty, filterPage, page, searchPage, settings
- Mutation: Mutation | fields: _empty, updateFormState, updateLocationDetails, updateRating
Directives: deprecated, include, skip (total: 3)

Readable stores: 2
settings (args: none) : ratingFormId=4214648 id=459f063d-a13b-435a-80ee-e6165a933562
ratingForm (args: none) : formSubmittedBodyText=Your feedback is helpful to continuously improve our resources! formDismissButtonText=CLOSE id=3e176d87-0cc6-4198-81dc-11bbaa2080d5 formId=4214648 formHeader=Rate this resource formSubmitButtonText=SUBMIT formSubmittedHeader=Thanks for rating!

Found on 2025-11-27 02:29

209.6 kBytes 9 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa39563946f31f9df3d5190f063c00b5265b7f13a66

GraphQL introspection enabled at /graphql
Types: 78 (by kind: ENUM: 7, INPUT_OBJECT: 4, INTERFACE: 2, OBJECT: 60, SCALAR: 4, UNION: 1)
Operations:
- Query: Query | fields: _empty, filterPage, page, searchPage, settings
- Mutation: Mutation | fields: _empty, updateFormState, updateLocationDetails, updateRating
Directives: deprecated, include, skip (total: 3)

Readable stores: 2
settings (args: none) : id=459f063d-a13b-435a-80ee-e6165a933562 ratingFormId=4214648
ratingForm (args: none) : formHeader=Rate this resource formSubmitButtonText=SUBMIT formSubmittedHeader=Thanks for rating! formSubmittedBodyText=Your feedback is helpful to continuously improve our resources! formDismissButtonText=CLOSE id=3e176d87-0cc6-4198-81dc-11bbaa2080d5 formId=4214648

Found on 2025-11-16 05:47

209.6 kBytes 9 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa39563946f31f9df3d5190f063c00b5265c8c4510a

GraphQL introspection enabled at /graphql
Types: 78 (by kind: ENUM: 7, INPUT_OBJECT: 4, INTERFACE: 2, OBJECT: 60, SCALAR: 4, UNION: 1)
Operations:
- Query: Query | fields: _empty, filterPage, page, searchPage, settings
- Mutation: Mutation | fields: _empty, updateFormState, updateLocationDetails, updateRating
Directives: deprecated, include, skip (total: 3)

Readable stores: 2
settings (args: none) : id=459f063d-a13b-435a-80ee-e6165a933562 ratingFormId=4214648
ratingForm (args: none) : formId=4214648 formHeader=Rate this resource formSubmitButtonText=SUBMIT formSubmittedHeader=Thanks for rating! formSubmittedBodyText=Your feedback is helpful to continuously improve our resources! formDismissButtonText=CLOSE id=3e176d87-0cc6-4198-81dc-11bbaa2080d5

Found on 2025-11-10 01:31

209.6 kBytes 9 rows

Create report

GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: api.guitarmasteryintensive.com
Port: 443
URL: https://api.guitarmasteryintensive.com

First seen 2025-11-10 01:41
Last seen 2026-01-02 03:01
Open for 53 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa355600455726f4a173239e8c344071dc796958ffb
```
GraphQL introspection enabled at /graphql
Types: 81 (by kind: ENUM: 3, OBJECT: 69, SCALAR: 8, UNION: 1)
Operations:
- Query: Query | fields: curriculum, curriculumModule, lastSegment, lesson, user
- Mutation: Mutation | fields: createMessageThread, createNextSegment, reportCompleteSubmission, reportExerciseProgress, reportProgress
Directives: deprecated, include, skip, specifiedBy (total: 4)
```
  Found on 2026-01-02 03:01
  
  89.0 kBytes
Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 99.83.220.108
Domain: members.comoly.jp
Port: 443
URL: https://members.comoly.jp

First seen 2025-05-28 01:17
Last seen 2026-01-02 02:53
Open for 219 days

Severity: low
Fingerprint: 5f32cf5d6962f09c7cf176427cf176423f3e94dee53e19e1e53e19e1e53e19e1
```
Found 2 files trough .DS_Store spidering:

/assets
/uploads
```
Found on 2026-01-02 02:53

Severity: low
Fingerprint: 5f32cf5d6962f09cdafa5447dafa5447b671e3e95092313e83e9d9a3be1e68f2

Found 18 files trough .DS_Store spidering:

/assets
/uploads
/uploads/item_image
/uploads/item_image/image
/uploads/item_image/image/1
/uploads/item_image/image/2
/uploads/item_image/image/3
/uploads/item_image/image/4
/uploads/product
/uploads/product/product_image
/uploads/product/product_image/1
/uploads/product/product_image/2
/uploads/tmp
/uploads/tmp/1695626173-450992166375541-0001-0685
/uploads/tmp/1696404755-253954344917405-0001-1507
/uploads/tmp/1696404776-997569988427667-0002-5843
/uploads/tmp/1696404813-353664039788471-0003-9337
/uploads/worker

Found on 2025-08-27 05:20

Severity: low
Fingerprint: 5f32cf5d6962f09c39aac35b39aac35bf639e88d273b218a60bae82fd7cac186

Found 14 files trough .DS_Store spidering:

/assets
/uploads
/uploads/item_image
/uploads/item_image/image
/uploads/item_image/image/1
/uploads/item_image/image/2
/uploads/item_image/image/3
/uploads/item_image/image/4
/uploads/product
/uploads/product/product_image
/uploads/product/product_image/1
/uploads/product/product_image/2
/uploads/tmp
/uploads/worker

Found on 2025-07-28 00:11

Severity: low
Fingerprint: 5f32cf5d6962f09cc169dbbec169dbbe800eab3abfb83bf5b913d71a3cab78a1

Found 15 files trough .DS_Store spidering:

/assets
/uploads
/uploads/item_image
/uploads/item_image/image
/uploads/item_image/image/1
/uploads/item_image/image/2
/uploads/item_image/image/3
/uploads/item_image/image/4
/uploads/product
/uploads/tmp
/uploads/tmp/1695626173-450992166375541-0001-0685
/uploads/tmp/1696404755-253954344917405-0001-1507
/uploads/tmp/1696404776-997569988427667-0002-5843
/uploads/tmp/1696404813-353664039788471-0003-9337
/uploads/worker

Found on 2025-07-28 00:11

Severity: low
Fingerprint: 5f32cf5d6962f09cccdd54a0ccdd54a06e009db05a44441741423e48dd35569c

Found 13 files trough .DS_Store spidering:

/assets
/uploads
/uploads/item_image
/uploads/product
/uploads/product/product_image
/uploads/product/product_image/1
/uploads/product/product_image/2
/uploads/tmp
/uploads/tmp/1695626173-450992166375541-0001-0685
/uploads/tmp/1696404755-253954344917405-0001-1507
/uploads/tmp/1696404776-997569988427667-0002-5843
/uploads/tmp/1696404813-353664039788471-0003-9337
/uploads/worker

Found on 2025-07-28 00:11

Severity: low
Fingerprint: 5f32cf5d6962f09cec7f8772ec7f877272a0bbae673265119a9a6f3683ef0c29

Found 11 files trough .DS_Store spidering:

/assets
/uploads
/uploads/item_image
/uploads/item_image/image
/uploads/item_image/image/1
/uploads/item_image/image/2
/uploads/item_image/image/3
/uploads/item_image/image/4
/uploads/product
/uploads/tmp
/uploads/worker

Found on 2025-05-28 01:17

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: www.spicenaturals.com
Port: 80
URL: http://www.spicenaturals.com

First seen 2025-10-28 01:09
Last seen 2026-01-02 02:46
Open for 66 days

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d6b51391f162c6eb7386fadb6d81fd9eb97f7a6eec

GraphQL introspection enabled at /api/graphql
Types: 95 (by kind: ENUM: 3, INPUT_OBJECT: 3, INTERFACE: 3, OBJECT: 80, SCALAR: 6)
Operations:
- Query: Query | fields: allowedCountries, countries, currencies, provinces, timezones
Directives: deprecated, include, skip, specifiedBy (total: 4)

Detected: Magento

Found on 2026-01-02 02:46

148.8 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d6b51391f162c6eb7386fadb6d81fd9eb981fd9eb9

GraphQL introspection enabled at /api/graphql
Types: 95 (by kind: ENUM: 3, INPUT_OBJECT: 3, INTERFACE: 3, OBJECT: 80, SCALAR: 6)
Operations:
- Query: Query | fields: allowedCountries, countries, currencies, provinces, timezones
Directives: deprecated, include, skip, specifiedBy (total: 4)

Found on 2025-12-12 13:50

148.8 kBytes

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 99.83.220.108
Domain: app.workshift.com
Port: 443
URL: https://app.workshift.com

First seen 2025-10-26 00:16
Last seen 2026-01-02 01:57
Open for 68 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa354057a0456328048694e3a61930f8c17dac869af

GraphQL introspection enabled at /graphql
Types: 260 (by kind: ENUM: 26, INPUT_OBJECT: 91, INTERFACE: 1, OBJECT: 133, SCALAR: 9)
Operations:
- Query: Query | fields: allCompanies, boldSync, completedJobsForTimesheet, eventTemplates, jobs
- Mutation: Mutation | fields: boldSync, companyCreate, companyDepartmentArchive, companyDepartmentCreate, companyDepartmentRestore
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2026-01-02 01:57

308.0 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3f42825c0ad3ef604c7427eed6eb91643cac49d2b

GraphQL introspection enabled at /graphql
Types: 256 (by kind: ENUM: 26, INPUT_OBJECT: 89, INTERFACE: 1, OBJECT: 131, SCALAR: 9)
Operations:
- Query: Query | fields: allCompanies, boldSync, completedJobsForTimesheet, eventTemplates, jobs
- Mutation: Mutation | fields: boldSync, companyCreate, companyDepartmentArchive, companyDepartmentCreate, companyDepartmentRestore
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2025-12-01 05:05

296.8 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa39edf7bfa808be7aadc71b33bef7f4d9d92aa5ab9

GraphQL introspection enabled at /graphql
Types: 247 (by kind: ENUM: 26, INPUT_OBJECT: 85, INTERFACE: 1, OBJECT: 126, SCALAR: 9)
Operations:
- Query: Query | fields: allCompanies, boldSync, completedJobsForTimesheet, eventTemplates, jobs
- Mutation: Mutation | fields: boldSync, companyCreate, companyDepartmentArchive, companyDepartmentCreate, companyDepartmentRestore
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2025-11-16 09:49

286.0 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa33ad239e87561b54c55a6a9f587943cebd44bee03

GraphQL introspection enabled at /graphql
Types: 234 (by kind: ENUM: 26, INPUT_OBJECT: 82, INTERFACE: 1, OBJECT: 116, SCALAR: 9)
Operations:
- Query: Query | fields: allCompanies, boldSync, completedJobsForTimesheet, eventTemplates, jobs
- Mutation: Mutation | fields: boldSync, companyCreate, companyDepartmentArchive, companyDepartmentCreate, companyDepartmentRestore
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2025-11-12 09:25

266.1 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3c5f9e7ca727dc5fabf58d4cb0ffd598d78e41f29

GraphQL introspection enabled at /graphql
Types: 233 (by kind: ENUM: 26, INPUT_OBJECT: 81, INTERFACE: 1, OBJECT: 116, SCALAR: 9)
Operations:
- Query: Query | fields: allCompanies, boldSync, completedJobsForTimesheet, eventTemplates, jobs
- Mutation: Mutation | fields: boldSync, companyCreate, companyDepartmentArchive, companyDepartmentCreate, companyDepartmentRestore
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2025-11-06 15:03

264.1 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa379f42fefe8f53dbd1ee2bd1d0972a6535ddb8c7b

GraphQL introspection enabled at /graphql
Types: 207 (by kind: ENUM: 24, INPUT_OBJECT: 70, INTERFACE: 1, OBJECT: 103, SCALAR: 9)
Operations:
- Query: Query | fields: allCompanies, boldSync, completedJobsForTimesheet, jobs, node
- Mutation: Mutation | fields: boldSync, companyCreate, companyDepartmentArchive, companyDepartmentCreate, companyDepartmentRestore
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2025-10-28 07:28

232.6 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa3
```
GraphQL introspection enabled at /graphql
```
Found on 2025-10-26 00:16

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: www.spicenaturals.com
Port: 443
URL: https://www.spicenaturals.com

First seen 2025-10-28 01:09
Last seen 2026-01-02 01:47
Open for 66 days

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d6b51391f162c6eb7386fadb6d81fd9eb97f7a6eec

GraphQL introspection enabled at /api/graphql
Types: 95 (by kind: ENUM: 3, INPUT_OBJECT: 3, INTERFACE: 3, OBJECT: 80, SCALAR: 6)
Operations:
- Query: Query | fields: allowedCountries, countries, currencies, provinces, timezones
Directives: deprecated, include, skip, specifiedBy (total: 4)

Detected: Magento

Found on 2026-01-02 01:47

148.8 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d6b51391f162c6eb7386fadb6d81fd9eb981fd9eb9

GraphQL introspection enabled at /api/graphql
Types: 95 (by kind: ENUM: 3, INPUT_OBJECT: 3, INTERFACE: 3, OBJECT: 80, SCALAR: 6)
Operations:
- Query: Query | fields: allowedCountries, countries, currencies, provinces, timezones
Directives: deprecated, include, skip, specifiedBy (total: 4)

Found on 2025-12-11 05:22

148.8 kBytes

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: fnbeastcle.org
Port: 80
URL: http://fnbeastcle.org

First seen 2025-10-29 00:08
Last seen 2026-01-02 01:47
Open for 65 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3c4d622c565e149075b05cbb10307455d64428e79

GraphQL introspection enabled at /graphql
Types: 97 (by kind: ENUM: 5, INPUT_OBJECT: 26, OBJECT: 56, SCALAR: 8, UNION: 2)
Operations:
- Query: RootQuery | fields: assignment, campaign, currentUser, inviteByHash, organization
- Mutation: RootMutation | fields: createCampaign, createInvite, deleteJob, editCampaign, editOrganization
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2026-01-02 01:47

134.2 kBytes

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: www.igao-uat.michiganlottery.com
Port: 443
URL: https://www.igao-uat.michiganlottery.com

First seen 2025-10-19 03:41
Last seen 2026-01-02 01:21
Open for 74 days

Severity: medium
Fingerprint: c2db3a1c40d490db84e0e3509d37f2533df59c11cdb15f9ad3d04b33057724f3

GraphQL introspection enabled at /api
Types: 248 (by kind: ENUM: 19, INPUT_OBJECT: 17, INTERFACE: 3, OBJECT: 198, SCALAR: 8, UNION: 3)
Operations:
- Query: Query | fields: allBigWinnerGameNames, bigWinners, getTicketScannerBanner, isApolloServerReady, promotionalBannerHomePage
- Mutation: Mutation | fields: addFavorite, recordAction, removeFavorite, syncPlayer, whatAmI
Directives: cacheControl, deprecated, include, oneOf, skip, specifiedBy (total: 6)

Found on 2026-01-02 01:21

281.6 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db84e0e350a1c6261bd6b96f59921ba9127722a88be9656d7b

GraphQL introspection enabled at /api
Types: 247 (by kind: ENUM: 19, INPUT_OBJECT: 17, INTERFACE: 3, OBJECT: 197, SCALAR: 8, UNION: 3)
Operations:
- Query: Query | fields: allBigWinnerGameNames, bigWinners, getTicketScannerBanner, isApolloServerReady, promotionalBannerHomePage
- Mutation: Mutation | fields: addFavorite, recordAction, removeFavorite, syncPlayer, whatAmI
Directives: cacheControl, deprecated, include, oneOf, skip, specifiedBy (total: 6)

Found on 2025-12-18 11:21

280.9 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db84e0e350b9e10ae9207d7dcbef5ddd904b2cce6917de055d

GraphQL introspection enabled at /api
Types: 237 (by kind: ENUM: 18, INPUT_OBJECT: 17, INTERFACE: 3, OBJECT: 188, SCALAR: 8, UNION: 3)
Operations:
- Query: Query | fields: allBigWinnerGameNames, bigWinners, getTicketScannerBanner, isApolloServerReady, promotionalBannerHomePage
- Mutation: Mutation | fields: addFavorite, recordAction, removeFavorite, syncPlayer, whatAmI
Directives: cacheControl, deprecated, include, oneOf, skip, specifiedBy (total: 6)

Found on 2025-12-01 01:55

270.0 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db84e0e350ae204d2dfe9ad38fad864db4651c0edde39b7999

GraphQL introspection enabled at /api
Types: 235 (by kind: ENUM: 18, INPUT_OBJECT: 17, INTERFACE: 3, OBJECT: 186, SCALAR: 8, UNION: 3)
Operations:
- Query: Query | fields: allBigWinnerGameNames, bigWinners, getTicketScannerBanner, isApolloServerReady, promotionalBannerHomePage
- Mutation: Mutation | fields: addFavorite, recordAction, removeFavorite, syncPlayer, whatAmI
Directives: cacheControl, deprecated, include, oneOf, skip, specifiedBy (total: 6)

Found on 2025-11-20 18:33

267.7 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db84e0e3506fa6c7d12b3dd513eda1f4a88f375c0147868605

GraphQL introspection enabled at /api
Types: 231 (by kind: ENUM: 18, INPUT_OBJECT: 17, INTERFACE: 3, OBJECT: 183, SCALAR: 7, UNION: 3)
Operations:
- Query: Query | fields: allBigWinnerGameNames, bigWinners, getTicketScannerBanner, isApolloServerReady, promotionalBannerHomePage
- Mutation: Mutation | fields: addFavorite, recordAction, removeFavorite, syncPlayer, whatAmI
Directives: cacheControl, deprecated, include, oneOf, skip, specifiedBy (total: 6)

Found on 2025-10-23 13:35

262.8 kBytes

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: api.bookkarte.com
Port: 443
URL: https://api.bookkarte.com

First seen 2025-11-16 02:04
Last seen 2026-01-02 00:33
Open for 46 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ab6740d7728c1d05b6b2dfb46636232edf79039e

GraphQL introspection enabled at /graphql
Types: 94 (by kind: ENUM: 2, INPUT_OBJECT: 31, OBJECT: 54, SCALAR: 7)
Operations:
- Query: Query | fields: accessToken, activeCatalogue, adminAccessToken, adminStaff, adminStaffs
- Mutation: Mutation | fields: applyBookCouponLetter, approveSelectedBooks, confirmBookOrder, createBookCoupon, createBookCouponPayment
Directives: deprecated, include, skip (total: 3)

Found on 2026-01-02 00:33

114.6 kBytes

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: www.food-shop-api.store
Port: 80
URL: http://www.food-shop-api.store

First seen 2025-11-02 01:18
Last seen 2026-01-02 00:18
Open for 60 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa38fde5a216ebe3ce384791ee28d01e117f2cc7a36

GraphQL introspection enabled at /graphql
Types: 87 (by kind: ENUM: 11, INPUT_OBJECT: 26, OBJECT: 43, SCALAR: 7)
Operations:
- Query: Query | fields: discountCodeGet, getAccount, searchContact, signIn, signInRestorer
- Mutation: Mutation | fields: accountActivate, addAccountAddress, createAccount, forgetPassword, passwordGenerate
- Subscription: Subscription | fields: orderNotification, orderPaid
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2026-01-02 00:18

139.7 kBytes

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 75.2.60.68
Domain: triangleservices.com
Port: 443
URL: https://triangleservices.com

First seen 2022-09-21 14:27
Last seen 2026-01-01 23:59
Open for 1198 days

Severity: high
Fingerprint: 5f32cf5d6962f09c8e4417c08e4417c05f473aaa88a4734cfc6a507904ee810c

Found 62 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/assets/camaleon_cms
/assets/css
/assets/css/font
/assets/css/font/roboto
/assets/express
/assets/plugins
/assets/roboto
/assets/themes
/assets/tinymce
/favicon.ico
/folder-icon.jpg
/fonts
/images
/images/ajax-loader.gif
/images/background
/images/background/img486915007.jpg
/images/background/IMG_8638.jpg
/images/background/IMG_86381.jpg
/images/blue-marker-dot.png
/images/blue-marker.png
/images/cancel_btn_3.png
/images/content
/images/content/maidbot.png
/images/cultureCallout.gif
/images/dia_0002.jpg
/images/dia_0003.jpg
/images/driving_original.bmp
/images/driving_original.png
/images/Equipment.jpg
/images/green
/images/icons
/images/img10.JPG
/images/img101.JPG
/images/img11.JPG
/images/img12.JPG
/images/img13.JPG
/images/img142.JPG
/images/img2.png
/images/img6.png
/images/logos
/images/logos/triangleservices.png
/images/no-image.png
/images/push back plane_original.bmp
/images/push_back_plane_original.png
/images/sign.png
/images/slider
/images/team
/images/topNav_bg.gif
/images/values
/images/values/safety.jpg
/media
/packs
/pdf
/robots.txt
/sitemap.xml.gz
/tmp

Found on 2026-01-01 23:59

Severity: high
Fingerprint: 5f32cf5d6962f09ca0cc0fcfa0cc0fcfe6e06f4bd5beb3e7db005aa0be8f88e7

Found 25 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/assets/camaleon_cms
/assets/css
/assets/css/font
/assets/css/font/roboto
/assets/express
/assets/plugins
/assets/roboto
/assets/themes
/assets/tinymce
/favicon.ico
/folder-icon.jpg
/fonts
/images
/media
/packs
/pdf
/robots.txt
/sitemap.xml.gz
/tmp

Found on 2025-11-28 08:49

Severity: high
Fingerprint: 5f32cf5d6962f09cb1c4b1dfb1c4b1df9aa7153b481745f72f733b90124ab911

Found 61 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/assets/camaleon_cms
/assets/css
/assets/css/font
/assets/css/font/roboto
/assets/express
/assets/plugins
/assets/roboto
/assets/themes
/assets/tinymce
/favicon.ico
/folder-icon.jpg
/fonts
/images
/images/ajax-loader.gif
/images/background
/images/background/img486915007.jpg
/images/background/IMG_8638.jpg
/images/background/IMG_86381.jpg
/images/blue-marker-dot.png
/images/blue-marker.png
/images/cancel_btn_3.png
/images/content
/images/content/maidbot.png
/images/cultureCallout.gif
/images/dia_0002.jpg
/images/dia_0003.jpg
/images/driving_original.bmp
/images/driving_original.png
/images/Equipment.jpg
/images/green
/images/icons
/images/img10.JPG
/images/img101.JPG
/images/img11.JPG
/images/img12.JPG
/images/img13.JPG
/images/img142.JPG
/images/img2.png
/images/img6.png
/images/logos
/images/logos/triangleservices.png
/images/no-image.png
/images/push back plane_original.bmp
/images/push_back_plane_original.png
/images/sign.png
/images/slider
/images/team
/images/topNav_bg.gif
/images/values
/media
/packs
/pdf
/robots.txt
/sitemap.xml.gz
/tmp

Found on 2025-11-26 12:57

Severity: high
Fingerprint: 5f32cf5d6962f09cb1c4b1dfb1c4b1df9aa7153b481745f72f733b9055ca0c0d

Found 61 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/assets/camaleon_cms
/assets/css
/assets/css/font
/assets/css/font/roboto
/assets/express
/assets/plugins
/assets/roboto
/assets/themes
/assets/tinymce
/favicon.ico
/folder-icon.jpg
/fonts
/images
/images/ajax-loader.gif
/images/background
/images/background/img486915007.jpg
/images/background/IMG_8638.jpg
/images/background/IMG_86381.jpg
/images/blue-marker-dot.png
/images/blue-marker.png
/images/cancel_btn_3.png
/images/content
/images/content/maidbot.png
/images/cultureCallout.gif
/images/dia_0002.jpg
/images/dia_0003.jpg
/images/driving_original.bmp
/images/driving_original.png
/images/Equipment.jpg
/images/green
/images/icons
/images/img10.JPG
/images/img101.JPG
/images/img11.JPG
/images/img12.JPG
/images/img13.JPG
/images/img142.JPG
/images/img2.png
/images/img6.png
/images/logos
/images/no-image.png
/images/push back plane_original.bmp
/images/push_back_plane_original.png
/images/sign.png
/images/slider
/images/team
/images/topNav_bg.gif
/images/values
/images/values/safety.jpg
/media
/packs
/pdf
/robots.txt
/sitemap.xml.gz
/tmp

Found on 2025-11-22 11:08

Severity: high
Fingerprint: 5f32cf5d6962f09ce9dbcc92e9dbcc92e0b201c0f4cee7f6131833af3e57bbe4

Found 60 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/assets/camaleon_cms
/assets/css
/assets/css/font
/assets/css/font/roboto
/assets/express
/assets/plugins
/assets/roboto
/assets/themes
/assets/tinymce
/favicon.ico
/folder-icon.jpg
/fonts
/images
/images/ajax-loader.gif
/images/background
/images/background/img486915007.jpg
/images/background/IMG_8638.jpg
/images/background/IMG_86381.jpg
/images/blue-marker-dot.png
/images/blue-marker.png
/images/cancel_btn_3.png
/images/content
/images/content/maidbot.png
/images/cultureCallout.gif
/images/dia_0002.jpg
/images/dia_0003.jpg
/images/driving_original.bmp
/images/driving_original.png
/images/Equipment.jpg
/images/green
/images/icons
/images/img10.JPG
/images/img101.JPG
/images/img11.JPG
/images/img12.JPG
/images/img13.JPG
/images/img142.JPG
/images/img2.png
/images/img6.png
/images/logos
/images/no-image.png
/images/push back plane_original.bmp
/images/push_back_plane_original.png
/images/sign.png
/images/slider
/images/team
/images/topNav_bg.gif
/images/values
/media
/packs
/pdf
/robots.txt
/sitemap.xml.gz
/tmp

Found on 2025-11-08 13:48

Severity: high
Fingerprint: 5f32cf5d6962f09c74247ea574247ea51b47974df947f80d4914d89a1971f942

Found 56 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/assets/camaleon_cms
/assets/css
/assets/css/font
/assets/css/font/roboto
/assets/express
/assets/plugins
/assets/roboto
/assets/themes
/assets/tinymce
/favicon.ico
/folder-icon.jpg
/fonts
/images
/images/ajax-loader.gif
/images/background
/images/blue-marker-dot.png
/images/blue-marker.png
/images/cancel_btn_3.png
/images/content
/images/cultureCallout.gif
/images/dia_0002.jpg
/images/dia_0003.jpg
/images/driving_original.bmp
/images/driving_original.png
/images/Equipment.jpg
/images/green
/images/icons
/images/img10.JPG
/images/img101.JPG
/images/img11.JPG
/images/img12.JPG
/images/img13.JPG
/images/img142.JPG
/images/img2.png
/images/img6.png
/images/logos
/images/no-image.png
/images/push back plane_original.bmp
/images/push_back_plane_original.png
/images/sign.png
/images/slider
/images/team
/images/topNav_bg.gif
/images/values
/media
/packs
/pdf
/robots.txt
/sitemap.xml.gz
/tmp

Found on 2025-10-25 00:08

Severity: high
Fingerprint: 5f32cf5d6962f09c680cb8ce680cb8ce0101405c665bb4aa9306a5db7b7fb27b

Found 59 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/assets/camaleon_cms
/assets/css
/assets/css/font
/assets/css/font/roboto
/assets/express
/assets/plugins
/assets/roboto
/assets/themes
/assets/tinymce
/favicon.ico
/folder-icon.jpg
/fonts
/images
/images/ajax-loader.gif
/images/background
/images/background/img486915007.jpg
/images/background/IMG_8638.jpg
/images/background/IMG_86381.jpg
/images/blue-marker-dot.png
/images/blue-marker.png
/images/cancel_btn_3.png
/images/content
/images/cultureCallout.gif
/images/dia_0002.jpg
/images/dia_0003.jpg
/images/driving_original.bmp
/images/driving_original.png
/images/Equipment.jpg
/images/green
/images/icons
/images/img10.JPG
/images/img101.JPG
/images/img11.JPG
/images/img12.JPG
/images/img13.JPG
/images/img142.JPG
/images/img2.png
/images/img6.png
/images/logos
/images/no-image.png
/images/push back plane_original.bmp
/images/push_back_plane_original.png
/images/sign.png
/images/slider
/images/team
/images/topNav_bg.gif
/images/values
/media
/packs
/pdf
/robots.txt
/sitemap.xml.gz
/tmp

Found on 2025-10-25 00:08

Severity: high
Fingerprint: 5f32cf5d6962f09cecc85b04ecc85b0403593bae898c3338ed9d781d6909cdda

Found 53 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/favicon.ico
/folder-icon.jpg
/fonts
/images
/images/ajax-loader.gif
/images/background
/images/background/img486915007.jpg
/images/background/IMG_8638.jpg
/images/background/IMG_86381.jpg
/images/blue-marker-dot.png
/images/blue-marker.png
/images/cancel_btn_3.png
/images/content
/images/content/maidbot.png
/images/cultureCallout.gif
/images/dia_0002.jpg
/images/dia_0003.jpg
/images/driving_original.bmp
/images/driving_original.png
/images/Equipment.jpg
/images/green
/images/icons
/images/img10.JPG
/images/img101.JPG
/images/img11.JPG
/images/img12.JPG
/images/img13.JPG
/images/img142.JPG
/images/img2.png
/images/img6.png
/images/logos
/images/logos/triangleservices.png
/images/no-image.png
/images/push back plane_original.bmp
/images/push_back_plane_original.png
/images/sign.png
/images/slider
/images/team
/images/topNav_bg.gif
/images/values
/images/values/safety.jpg
/media
/packs
/pdf
/robots.txt
/sitemap.xml.gz
/tmp

Found on 2025-07-14 08:02

Severity: high
Fingerprint: 5f32cf5d6962f09c7d264b917d264b91678804a94b27c5618f6636d6ef22a5a7

Found 52 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/favicon.ico
/folder-icon.jpg
/fonts
/images
/images/ajax-loader.gif
/images/background
/images/background/img486915007.jpg
/images/background/IMG_8638.jpg
/images/background/IMG_86381.jpg
/images/blue-marker-dot.png
/images/blue-marker.png
/images/cancel_btn_3.png
/images/content
/images/content/maidbot.png
/images/cultureCallout.gif
/images/dia_0002.jpg
/images/dia_0003.jpg
/images/driving_original.bmp
/images/driving_original.png
/images/Equipment.jpg
/images/green
/images/icons
/images/img10.JPG
/images/img101.JPG
/images/img11.JPG
/images/img12.JPG
/images/img13.JPG
/images/img142.JPG
/images/img2.png
/images/img6.png
/images/logos
/images/logos/triangleservices.png
/images/no-image.png
/images/push back plane_original.bmp
/images/push_back_plane_original.png
/images/sign.png
/images/slider
/images/team
/images/topNav_bg.gif
/images/values
/media
/packs
/pdf
/robots.txt
/sitemap.xml.gz
/tmp

Found on 2025-06-24 15:18

Severity: high
Fingerprint: 5f32cf5d6962f09c75d69a7675d69a7692f047c4ff20f132ebe18e83f92132f2

Found 51 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/favicon.ico
/folder-icon.jpg
/fonts
/images
/images/ajax-loader.gif
/images/background
/images/background/img486915007.jpg
/images/background/IMG_8638.jpg
/images/background/IMG_86381.jpg
/images/blue-marker-dot.png
/images/blue-marker.png
/images/cancel_btn_3.png
/images/content
/images/content/maidbot.png
/images/cultureCallout.gif
/images/dia_0002.jpg
/images/dia_0003.jpg
/images/driving_original.bmp
/images/driving_original.png
/images/Equipment.jpg
/images/green
/images/icons
/images/img10.JPG
/images/img101.JPG
/images/img11.JPG
/images/img12.JPG
/images/img13.JPG
/images/img142.JPG
/images/img2.png
/images/img6.png
/images/logos
/images/no-image.png
/images/push back plane_original.bmp
/images/push_back_plane_original.png
/images/sign.png
/images/slider
/images/team
/images/topNav_bg.gif
/images/values
/media
/packs
/pdf
/robots.txt
/sitemap.xml.gz
/tmp

Found on 2025-05-16 16:24

Severity: high
Fingerprint: 5f32cf5d6962f09c7d264b917d264b91678804a94b27c5618f6636d6071ab997

Found 52 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/favicon.ico
/folder-icon.jpg
/fonts
/images
/images/ajax-loader.gif
/images/background
/images/background/img486915007.jpg
/images/background/IMG_8638.jpg
/images/background/IMG_86381.jpg
/images/blue-marker-dot.png
/images/blue-marker.png
/images/cancel_btn_3.png
/images/content
/images/content/maidbot.png
/images/cultureCallout.gif
/images/dia_0002.jpg
/images/dia_0003.jpg
/images/driving_original.bmp
/images/driving_original.png
/images/Equipment.jpg
/images/green
/images/icons
/images/img10.JPG
/images/img101.JPG
/images/img11.JPG
/images/img12.JPG
/images/img13.JPG
/images/img142.JPG
/images/img2.png
/images/img6.png
/images/logos
/images/no-image.png
/images/push back plane_original.bmp
/images/push_back_plane_original.png
/images/sign.png
/images/slider
/images/team
/images/topNav_bg.gif
/images/values
/images/values/safety.jpg
/media
/packs
/pdf
/robots.txt
/sitemap.xml.gz
/tmp

Found on 2025-02-26 00:12

Severity: high
Fingerprint: 5f32cf5d6962f09cfdf2c773fdf2c773b63c0a2f2d8422130ab4e864ca7061e4

Found 50 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/favicon.ico
/folder-icon.jpg
/fonts
/images
/images/ajax-loader.gif
/images/background
/images/background/img486915007.jpg
/images/background/IMG_8638.jpg
/images/background/IMG_86381.jpg
/images/blue-marker-dot.png
/images/blue-marker.png
/images/cancel_btn_3.png
/images/content
/images/cultureCallout.gif
/images/dia_0002.jpg
/images/dia_0003.jpg
/images/driving_original.bmp
/images/driving_original.png
/images/Equipment.jpg
/images/green
/images/icons
/images/img10.JPG
/images/img101.JPG
/images/img11.JPG
/images/img12.JPG
/images/img13.JPG
/images/img142.JPG
/images/img2.png
/images/img6.png
/images/logos
/images/no-image.png
/images/push back plane_original.bmp
/images/push_back_plane_original.png
/images/sign.png
/images/slider
/images/team
/images/topNav_bg.gif
/images/values
/media
/packs
/pdf
/robots.txt
/sitemap.xml.gz
/tmp

Found on 2022-09-21 14:28

Severity: high
Fingerprint: 5f32cf5d6962f09c114fbe07114fbe07a2f6d683274e813f7885fcd8cf511960

Found 47 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/favicon.ico
/folder-icon.jpg
/fonts
/images
/images/ajax-loader.gif
/images/background
/images/blue-marker-dot.png
/images/blue-marker.png
/images/cancel_btn_3.png
/images/content
/images/cultureCallout.gif
/images/dia_0002.jpg
/images/dia_0003.jpg
/images/driving_original.bmp
/images/driving_original.png
/images/Equipment.jpg
/images/green
/images/icons
/images/img10.JPG
/images/img101.JPG
/images/img11.JPG
/images/img12.JPG
/images/img13.JPG
/images/img142.JPG
/images/img2.png
/images/img6.png
/images/logos
/images/no-image.png
/images/push back plane_original.bmp
/images/push_back_plane_original.png
/images/sign.png
/images/slider
/images/team
/images/topNav_bg.gif
/images/values
/media
/packs
/pdf
/robots.txt
/sitemap.xml.gz
/tmp

Found on 2022-09-21 14:27

Create report

GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: channel-graph-staging.flexspace.ai
Port: 443
URL: https://channel-graph-staging.flexspace.ai

First seen 2025-11-20 00:22
Last seen 2026-01-01 22:50
Open for 42 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa347142fa62206a1d61b71fdd691c61ba358455a0f
```
GraphQL introspection enabled at /graphql
Types: 163 (by kind: ENUM: 24, INPUT_OBJECT: 43, OBJECT: 89, SCALAR: 5, UNION: 2)
Operations:
- Query: Query | fields: amenities, currentUser, ipPlace, paymentMethod, space
- Mutation: Mutation | fields: cancelBooking, changeUserPassword, checkout, createPaymentCustomer, updateUser
Directives: deprecated, include, skip, specifiedBy (total: 4)
```
  Found on 2026-01-01 22:50
  
  210.9 kBytes
Create report
GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: demo-api.volo.team
Port: 80
URL: http://demo-api.volo.team

First seen 2025-10-19 00:59
Last seen 2026-01-01 22:41
Open for 74 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa32b8e4e0fbcd8c81d0373d880f95f9232c8857744
```
GraphQL introspection enabled at /graphql
Types: 84 (by kind: ENUM: 12, INPUT_OBJECT: 32, OBJECT: 29, SCALAR: 8, UNION: 3)
Operations:
- Query: Query | fields: getCycles, getJobTitles, getOrganization, getTeam, getTeams
- Mutation: Mutation | fields: createJobTitle, createTeam, deleteJobTitle, updateJobTitle, updateTeam
Directives: deprecated, include, skip, specifiedBy (total: 4)
```
  Found on 2026-01-01 22:41
  
  104.0 kBytes
Create report
GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: mygolo-xapi-staging.golo.com
Port: 443
URL: https://mygolo-xapi-staging.golo.com

First seen 2025-12-12 01:08
Last seen 2026-01-01 22:15
Open for 20 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa385b0e53ea246ceeef18b2ff60f282f3263af2e44
```
GraphQL introspection enabled at /graphql
Types: 66 (by kind: ENUM: 7, INPUT_OBJECT: 19, OBJECT: 32, SCALAR: 8)
Operations:
- Query: Query | fields: behavioralQuiz, behavioralQuizCategories, behavioralQuizQuestions, ping, userAssessment
- Mutation: Mutation | fields: activateUser, createBehavioralQuiz, createUserAssessment, createWeightEvent, deleteFile
Directives: deprecated, include, skip, specifiedBy (total: 4)
```
  Found on 2026-01-01 22:15
  
  78.6 kBytes
Create report
GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: sustainability.allovance.com
Port: 443
URL: https://sustainability.allovance.com

First seen 2025-12-02 01:12
Last seen 2026-01-01 21:58
Open for 30 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa3a9f982a58c73dfa7565e3e7d92bd27b8a7703e40
```
GraphQL introspection enabled at /graphql
Types: 41 (by kind: ENUM: 2, OBJECT: 34, SCALAR: 5)
Operations:
- Query: Query | fields: AssetCategory, AssetTeam, AutomationModel, ClientCompanyModels, allClientCompanies
- Mutation: Mutation | fields: createAssetCategory, createAssetTeam, deleteAssetCategory, updateAssetCategory, updateAssetTeam
Directives: deprecated, include, skip (total: 3)
```
  Found on 2026-01-01 21:58
  
  164.3 kBytes
Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: www.smartestate.verifsuite.com
Port: 80
URL: http://www.smartestate.verifsuite.com

First seen 2025-11-20 00:02
Last seen 2026-01-01 21:57
Open for 42 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa35d9b64dd6c985cbf1c3ac0a03b66eb3929603865

GraphQL introspection enabled at /graphql
Types: 59 (by kind: ENUM: 2, OBJECT: 50, SCALAR: 6, UNION: 1)
Operations:
- Query: Query | fields: addUserRequestsByStatus, adminBlacklistPeople, adminBlacklistVehicles, adminCondoBlock, adminCondoUnits
- Mutation: Mutation | fields: adminCreateVisitorInvitation, adminLogin, adminLogout, cancelBooking, createBooking
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2026-01-01 21:57

103.0 kBytes

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 75.2.60.68
Domain: bmr-console-stage.navybmr.com
Port: 443
URL: https://bmr-console-stage.navybmr.com

First seen 2025-04-28 15:40
Last seen 2026-01-01 21:21
Open for 248 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9d89c0562b89c0562b89c0562b89c0562b
```
Found 1 files trough .DS_Store spidering:

/bmr
```
  Found on 2026-01-01 21:21
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 75.2.60.68
Domain: staging.conti-communications.com
Port: 80
URL: http://staging.conti-communications.com

First seen 2025-01-02 22:18
Last seen 2026-01-01 21:04
Open for 363 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c0215adfc0215adfc51fa561c515fc99fca06c0584bd42d6e
```
Found 4 files trough .DS_Store spidering:

/css
/fonts
/images
/js
```
  Found on 2026-01-01 21:04
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 75.2.60.68
Domain: nzrugby.patronus-safeguarding.com
Port: 443
URL: https://nzrugby.patronus-safeguarding.com

First seen 2025-12-01 19:42
Last seen 2026-01-01 19:49
Open for 31 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c0215adfc0215adfcfee7b1124a46c9683833d103b5ae9b29
```
Found 4 files trough .DS_Store spidering:

/image
/newsletter
/packs
/packs-test
```
  Found on 2026-01-01 19:49
Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: dev.api.moona.health
Port: 443
URL: https://dev.api.moona.health

First seen 2025-11-22 01:13
Last seen 2026-01-01 19:47
Open for 40 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa32061ca5fee69eb6d4564c03682f3eef8ab8c3b58

GraphQL introspection enabled at /graphql
Types: 154 (by kind: ENUM: 19, INPUT_OBJECT: 67, OBJECT: 63, SCALAR: 5)
Operations:
- Query: Query | fields: ReferringProvidersDataFromAdmin, adminInfo, careProviderInfo, checkLeadPatientExistFromAdmin, checkNpsIsCompleted
- Mutation: Mutation | fields: cancelAppointment, checkPayersEligibility, checkPayersEligibilityV2, completeFormFromCareProvider, completeFormFromPatient
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2026-01-01 19:47

218.0 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37bda0683df38ed818f30fb6acdfe7f5e2cb2778a

GraphQL introspection enabled at /graphql
Types: 151 (by kind: ENUM: 19, INPUT_OBJECT: 64, OBJECT: 63, SCALAR: 5)
Operations:
- Query: Query | fields: ReferringProvidersDataFromAdmin, adminInfo, careProviderInfo, checkLeadPatientExistFromAdmin, checkNpsIsCompleted
- Mutation: Mutation | fields: cancelAppointment, checkPayersEligibility, checkPayersEligibilityV2, completeGAD, completeIsi
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2025-12-26 18:38

214.8 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa302af5d9011c6b654e85e3af391c1bb737940635b

GraphQL introspection enabled at /graphql
Types: 149 (by kind: ENUM: 19, INPUT_OBJECT: 62, OBJECT: 63, SCALAR: 5)
Operations:
- Query: Query | fields: ReferringProvidersDataFromAdmin, adminInfo, careProviderInfo, checkLeadPatientExistFromAdmin, checkNpsIsCompleted
- Mutation: Mutation | fields: cancelAppointment, checkPayersEligibility, checkPayersEligibilityV2, completeGAD, completeIsi
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2025-12-22 20:12

212.5 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa33197657a2c36602aee55527566f116f51371df41

GraphQL introspection enabled at /graphql
Types: 144 (by kind: ENUM: 18, INPUT_OBJECT: 60, OBJECT: 61, SCALAR: 5)
Operations:
- Query: Query | fields: ReferringProvidersDataFromAdmin, adminInfo, careProviderInfo, checkLeadPatientExistFromAdmin, checkNpsIsCompleted
- Mutation: Mutation | fields: cancelAppointment, checkPayersEligibility, checkPayersEligibilityV2, completeGAD, completeIsi
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2025-12-21 04:05

208.8 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ca0e38922cf03c620f3bf93d1adb63cd46985169

GraphQL introspection enabled at /graphql
Types: 143 (by kind: ENUM: 18, INPUT_OBJECT: 60, OBJECT: 60, SCALAR: 5)
Operations:
- Query: Query | fields: ReferringProvidersDataFromAdmin, adminInfo, careProviderInfo, checkLeadPatientExistFromAdmin, checkNpsIsCompleted
- Mutation: Mutation | fields: cancelAppointment, checkPayersEligibility, checkPayersEligibilityV2, completeGAD, completeIsi
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2025-12-19 04:45

205.9 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa335c2240f79eeba1dab28dd8167aebd295c422a15

GraphQL introspection enabled at /graphql
Types: 135 (by kind: ENUM: 16, INPUT_OBJECT: 58, OBJECT: 56, SCALAR: 5)
Operations:
- Query: Query | fields: adminInfo, careProviderInfo, checkLeadPatientExistFromAdmin, checkNpsIsCompleted, checkPatientExist
- Mutation: Mutation | fields: cancelAppointment, checkPayersEligibility, checkPayersEligibilityV2, completeGAD, completeIsi
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2025-12-16 23:25

196.6 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3dcc7bbb3b7e304b1afb86b65521b3b0542536b91

GraphQL introspection enabled at /graphql
Types: 133 (by kind: ENUM: 16, INPUT_OBJECT: 56, OBJECT: 56, SCALAR: 5)
Operations:
- Query: Query | fields: adminInfo, careProviderInfo, checkLeadPatientExistFromAdmin, checkNpsIsCompleted, checkPatientExist
- Mutation: Mutation | fields: cancelAppointment, checkPayersEligibility, checkPayersEligibilityV2, completeGAD, completeIsi
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2025-12-13 11:06

193.2 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ef707c4e81ae34be3ce23d2a64766d9ed120cbca

GraphQL introspection enabled at /graphql
Types: 129 (by kind: ENUM: 16, INPUT_OBJECT: 53, OBJECT: 55, SCALAR: 5)
Operations:
- Query: Query | fields: adminInfo, careProviderInfo, checkLeadPatientExistFromAdmin, checkNpsIsCompleted, checkPatientExist
- Mutation: Mutation | fields: cancelAppointment, checkPayersEligibility, checkPayersEligibilityV2, completeGAD, completeIsi
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2025-12-11 11:28

187.3 kBytes

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 75.2.60.68
Domain: partner.preprod.boundless.life
Port: 443
URL: https://partner.preprod.boundless.life

First seen 2025-09-02 19:37
Last seen 2026-01-01 01:42
Open for 120 days

Severity: medium
Fingerprint: 5f32cf5d6962f09c8efce1938efce19318c11f3a54092988c3fd157ee36cc808

Found 36 files trough .DS_Store spidering:

/404.gif
/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/avatars
/BoundlessHosts-type2.svg
/BoundlessHosts-type3.svg
/casa_azul
/circle.png
/coc.pdf
/dashboard
/dashboard/css
/dashboard/fonts
/dashboard/imgs
/dashboard/imgs/almost_there.png
/dashboard/imgs/community_access.jpg
/dashboard/imgs/img.png
/dashboard/imgs/page
/dashboard/imgs/page/dashboard
/dashboard/imgs/slider
/dashboard/imgs/template
/dashboard/js
/empty-2.png
/family-welcome.png
/Family_6.jpg
/favicon.ico
/onboarding-1.png
/onboarding-2.png
/onboarding-3.png
/onboarding-registration.jpeg
/party.png
/referral-agreement.pdf
/robots.txt
/Working_1.png

Found on 2026-01-01 01:42

Severity: medium
Fingerprint: 5f32cf5d6962f09c8f03d7bd8f03d7bd18b54d047ac2f1ae5b63f538f5cf9851

Found 38 files trough .DS_Store spidering:

/404.gif
/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/avatars
/BoundlessHosts-type2.svg
/BoundlessHosts-type3.svg
/casa_azul
/circle.png
/coc.pdf
/dashboard
/dashboard/css
/dashboard/css/plugins
/dashboard/css/vendors
/dashboard/fonts
/dashboard/imgs
/dashboard/imgs/almost_there.png
/dashboard/imgs/community_access.jpg
/dashboard/imgs/img.png
/dashboard/imgs/page
/dashboard/imgs/page/dashboard
/dashboard/imgs/slider
/dashboard/imgs/template
/dashboard/js
/empty-2.png
/family-welcome.png
/Family_6.jpg
/favicon.ico
/onboarding-1.png
/onboarding-2.png
/onboarding-3.png
/onboarding-registration.jpeg
/party.png
/referral-agreement.pdf
/robots.txt
/Working_1.png

Found on 2026-01-01 01:42

Severity: medium
Fingerprint: 5f32cf5d6962f09cb3107650b3107650b1056339cc4bd4f171e04ee9cf4c9c13

Found 39 files trough .DS_Store spidering:

/404.gif
/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/avatars
/BoundlessHosts-type2.svg
/BoundlessHosts-type3.svg
/casa_azul
/circle.png
/coc.pdf
/dashboard
/dashboard/css
/dashboard/css/plugins
/dashboard/css/vendors
/dashboard/css/vendors/bootstrap-sass
/dashboard/fonts
/dashboard/imgs
/dashboard/imgs/almost_there.png
/dashboard/imgs/community_access.jpg
/dashboard/imgs/img.png
/dashboard/imgs/page
/dashboard/imgs/page/dashboard
/dashboard/imgs/slider
/dashboard/imgs/template
/dashboard/js
/empty-2.png
/family-welcome.png
/Family_6.jpg
/favicon.ico
/onboarding-1.png
/onboarding-2.png
/onboarding-3.png
/onboarding-registration.jpeg
/party.png
/referral-agreement.pdf
/robots.txt
/Working_1.png

Found on 2026-01-01 01:42

Severity: medium
Fingerprint: 5f32cf5d6962f09c8f03d7bd8f03d7bd18b54d047ac2f1ae5b63f538d274b1eb

Found 38 files trough .DS_Store spidering:

/404.gif
/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/avatars
/BoundlessHosts-type2.svg
/BoundlessHosts-type3.svg
/casa_azul
/circle.png
/coc.pdf
/dashboard
/dashboard/css
/dashboard/css/plugins
/dashboard/css/vendors
/dashboard/css/vendors/bootstrap-sass
/dashboard/fonts
/dashboard/imgs
/dashboard/imgs/almost_there.png
/dashboard/imgs/community_access.jpg
/dashboard/imgs/img.png
/dashboard/imgs/page
/dashboard/imgs/slider
/dashboard/imgs/template
/dashboard/js
/empty-2.png
/family-welcome.png
/Family_6.jpg
/favicon.ico
/onboarding-1.png
/onboarding-2.png
/onboarding-3.png
/onboarding-registration.jpeg
/party.png
/referral-agreement.pdf
/robots.txt
/Working_1.png

Found on 2026-01-01 01:42

Severity: low
Fingerprint: 5f32cf5d6962f09ca0cc0fcfa0cc0fcf4b1670d6ee15c124d92405122d1fea98

Found 25 files trough .DS_Store spidering:

/404.gif
/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/avatars
/BoundlessHosts-type2.svg
/BoundlessHosts-type3.svg
/casa_azul
/circle.png
/coc.pdf
/dashboard
/empty-2.png
/family-welcome.png
/Family_6.jpg
/favicon.ico
/onboarding-1.png
/onboarding-2.png
/onboarding-3.png
/onboarding-registration.jpeg
/party.png
/referral-agreement.pdf
/robots.txt
/Working_1.png

Found on 2025-09-02 19:37

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: globo-api-prod.s-district.click
Port: 80
URL: http://globo-api-prod.s-district.click

First seen 2025-11-02 00:28
Last seen 2026-01-01 01:22
Open for 60 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3781412769b463766adf06ddc22d7a1252f2fbffe

GraphQL introspection enabled at /graphql
Types: 143 (by kind: ENUM: 18, INPUT_OBJECT: 66, OBJECT: 52, SCALAR: 6, UNION: 1)
Operations:
- Query: Query | fields: alternativeLogin, classicLogin, emailsTraces, mobileLogin, venueEventCategories
- Mutation: Mutation | fields: logout, refresh, removeFiles, removeOldEmailFiles, uploadFile
- Subscription: Subscription | fields: campaignDataChange, emailsTracesChange, venueEventCategoryDataChange, venueEventDataChange, venueEventReservationsChange
Directives: deprecated, include, skip, specifiedBy (total: 4)

Found on 2026-01-01 01:22

156.4 kBytes

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 75.2.60.68
Domain: sellarafaeli.com
Port: 443
URL: https://sellarafaeli.com

First seen 2022-09-09 11:01
Last seen 2026-01-01 01:12
Open for 1209 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c11d3744d11d3744df433c9e630ddc8138e15eca37f51d11c
```
Found 12 files trough .DS_Store spidering:

/audio
/audio/old
/img
/img/4575189068_11fe4d7e9e_o.jpg
/img/belgarath.jpg
/img/fiverr_profile.jpg
/img/fiverr_profile_thumbnail.jpg
/img/foo.bar
/img/foo_mar_bar.json
/img/south_america.png
/img/star.png
/img/whatsapp_profile.jpeg
```
  Found on 2026-01-01 01:12
- Severity: low
  Fingerprint: 5f32cf5d6962f09c1a5d9b0f1a5d9b0f09968c301a517d9db83b4d6db83b4d6d
```
Found 3 files trough .DS_Store spidering:

/audio
/audio/old
/img
```
  Found on 2025-01-04 00:43
Create report
GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: www.bailfundapp.com
Port: 443
URL: https://www.bailfundapp.com

First seen 2025-11-16 02:44
Last seen 2025-12-30 14:31
Open for 44 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa3ba4c71803ae89744cb11c09ff196c30fa663c3d3
```
GraphQL introspection enabled at /graphql
Types: 117 (by kind: ENUM: 15, INPUT_OBJECT: 45, OBJECT: 51, SCALAR: 6)
Operations:
- Query: Queries | fields: documents, duplicateQueryResults, listUsers, organization, userInfo
- Mutation: Mutations | fields: createView, deleteView, updateFlags, updateUserData, updateView
Directives: include, skip (total: 2)
```
  Found on 2025-12-30 14:31
  
  125.8 kBytes
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 75.2.60.68
Domain: theballotbook.com
Port: 443
URL: https://theballotbook.com

First seen 2024-02-01 10:40
Last seen 2025-12-30 14:19
Open for 698 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dd0ab7e00d0ab7e00d0ab7e00d0ab7e00
```
Found 1 files trough .DS_Store spidering:

/codebook
```
  Found on 2025-12-30 14:19
- Severity: low
  Fingerprint: 5f32cf5d6962f09c1a5d9b0f1a5d9b0ff409caf16165d796f296d409f296d409
```
Found 3 files trough .DS_Store spidering:

/assets
/packs
/uploads
```
  Found on 2025-02-18 06:01
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9d502cd7c0502cd7c0502cd7c0502cd7c0
```
Found 1 files trough .DS_Store spidering:

/geojsons
```
  Found on 2024-02-03 01:05
Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 35.71.179.82
Domain: bff.weschools.we.org
Port: 80
URL: http://bff.weschools.we.org

First seen 2025-11-10 01:32
Last seen 2025-12-30 14:18
Open for 50 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa39563946f31f9df3d5190f063c00b526588d29d1e

GraphQL introspection enabled at /graphql
Types: 78 (by kind: ENUM: 7, INPUT_OBJECT: 4, INTERFACE: 2, OBJECT: 60, SCALAR: 4, UNION: 1)
Operations:
- Query: Query | fields: _empty, filterPage, page, searchPage, settings
- Mutation: Mutation | fields: _empty, updateFormState, updateLocationDetails, updateRating
Directives: deprecated, include, skip (total: 3)

Readable stores: 2
settings (args: none) : id=459f063d-a13b-435a-80ee-e6165a933562 ratingFormId=4214648
ratingForm (args: none) : id=3e176d87-0cc6-4198-81dc-11bbaa2080d5 formId=4214648 formHeader=Rate this resource formSubmitButtonText=SUBMIT formSubmittedHeader=Thanks for rating! formSubmittedBodyText=Your feedback is helpful to continuously improve our resources! formDismissButtonText=CLOSE

Found on 2025-12-30 14:18

209.6 kBytes 9 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa39563946f31f9df3d5190f063c00b526510ecaff4

GraphQL introspection enabled at /graphql
Types: 78 (by kind: ENUM: 7, INPUT_OBJECT: 4, INTERFACE: 2, OBJECT: 60, SCALAR: 4, UNION: 1)
Operations:
- Query: Query | fields: _empty, filterPage, page, searchPage, settings
- Mutation: Mutation | fields: _empty, updateFormState, updateLocationDetails, updateRating
Directives: deprecated, include, skip (total: 3)

Readable stores: 2
settings (args: none) : ratingFormId=4214648 id=459f063d-a13b-435a-80ee-e6165a933562
ratingForm (args: none) : formId=4214648 formHeader=Rate this resource formSubmitButtonText=SUBMIT formSubmittedHeader=Thanks for rating! formSubmittedBodyText=Your feedback is helpful to continuously improve our resources! formDismissButtonText=CLOSE id=3e176d87-0cc6-4198-81dc-11bbaa2080d5

Found on 2025-12-26 13:56

209.6 kBytes 9 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa39563946f31f9df3d5190f063c00b52658d6d0e06

GraphQL introspection enabled at /graphql
Types: 78 (by kind: ENUM: 7, INPUT_OBJECT: 4, INTERFACE: 2, OBJECT: 60, SCALAR: 4, UNION: 1)
Operations:
- Query: Query | fields: _empty, filterPage, page, searchPage, settings
- Mutation: Mutation | fields: _empty, updateFormState, updateLocationDetails, updateRating
Directives: deprecated, include, skip (total: 3)

Readable stores: 2
settings (args: none) : id=459f063d-a13b-435a-80ee-e6165a933562 ratingFormId=4214648
ratingForm (args: none) : formSubmitButtonText=SUBMIT formSubmittedHeader=Thanks for rating! formSubmittedBodyText=Your feedback is helpful to continuously improve our resources! formDismissButtonText=CLOSE id=3e176d87-0cc6-4198-81dc-11bbaa2080d5 formId=4214648 formHeader=Rate this resource

Found on 2025-12-24 12:20

209.6 kBytes 9 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa39563946f31f9df3d5190f063c00b52659f717a72

GraphQL introspection enabled at /graphql
Types: 78 (by kind: ENUM: 7, INPUT_OBJECT: 4, INTERFACE: 2, OBJECT: 60, SCALAR: 4, UNION: 1)
Operations:
- Query: Query | fields: _empty, filterPage, page, searchPage, settings
- Mutation: Mutation | fields: _empty, updateFormState, updateLocationDetails, updateRating
Directives: deprecated, include, skip (total: 3)

Readable stores: 2
settings (args: none) : id=459f063d-a13b-435a-80ee-e6165a933562 ratingFormId=4214648
ratingForm (args: none) : formSubmittedBodyText=Your feedback is helpful to continuously improve our resources! formDismissButtonText=CLOSE id=3e176d87-0cc6-4198-81dc-11bbaa2080d5 formId=4214648 formHeader=Rate this resource formSubmitButtonText=SUBMIT formSubmittedHeader=Thanks for rating!

Found on 2025-12-20 15:55

209.6 kBytes 9 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa39563946f31f9df3d5190f063c00b5265801894ce

GraphQL introspection enabled at /graphql
Types: 78 (by kind: ENUM: 7, INPUT_OBJECT: 4, INTERFACE: 2, OBJECT: 60, SCALAR: 4, UNION: 1)
Operations:
- Query: Query | fields: _empty, filterPage, page, searchPage, settings
- Mutation: Mutation | fields: _empty, updateFormState, updateLocationDetails, updateRating
Directives: deprecated, include, skip (total: 3)

Readable stores: 2
settings (args: none) : id=459f063d-a13b-435a-80ee-e6165a933562 ratingFormId=4214648
ratingForm (args: none) : formDismissButtonText=CLOSE id=3e176d87-0cc6-4198-81dc-11bbaa2080d5 formId=4214648 formHeader=Rate this resource formSubmitButtonText=SUBMIT formSubmittedHeader=Thanks for rating! formSubmittedBodyText=Your feedback is helpful to continuously improve our resources!

Found on 2025-12-16 10:51

209.6 kBytes 9 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa39563946f31f9df3d5190f063c00b52653967b946

GraphQL introspection enabled at /graphql
Types: 78 (by kind: ENUM: 7, INPUT_OBJECT: 4, INTERFACE: 2, OBJECT: 60, SCALAR: 4, UNION: 1)
Operations:
- Query: Query | fields: _empty, filterPage, page, searchPage, settings
- Mutation: Mutation | fields: _empty, updateFormState, updateLocationDetails, updateRating
Directives: deprecated, include, skip (total: 3)

Readable stores: 2
settings (args: none) : id=459f063d-a13b-435a-80ee-e6165a933562 ratingFormId=4214648
ratingForm (args: none) : formSubmittedHeader=Thanks for rating! formSubmittedBodyText=Your feedback is helpful to continuously improve our resources! formDismissButtonText=CLOSE id=3e176d87-0cc6-4198-81dc-11bbaa2080d5 formId=4214648 formHeader=Rate this resource formSubmitButtonText=SUBMIT

Found on 2025-12-14 04:02

209.6 kBytes 9 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa3
```
GraphQL introspection enabled at /graphql
```
Found on 2025-11-28 16:36

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa39563946f31f9df3d5190f063c00b5265c8c4510a

GraphQL introspection enabled at /graphql
Types: 78 (by kind: ENUM: 7, INPUT_OBJECT: 4, INTERFACE: 2, OBJECT: 60, SCALAR: 4, UNION: 1)
Operations:
- Query: Query | fields: _empty, filterPage, page, searchPage, settings
- Mutation: Mutation | fields: _empty, updateFormState, updateLocationDetails, updateRating
Directives: deprecated, include, skip (total: 3)

Readable stores: 2
settings (args: none) : id=459f063d-a13b-435a-80ee-e6165a933562 ratingFormId=4214648
ratingForm (args: none) : formId=4214648 formHeader=Rate this resource formSubmitButtonText=SUBMIT formSubmittedHeader=Thanks for rating! formSubmittedBodyText=Your feedback is helpful to continuously improve our resources! formDismissButtonText=CLOSE id=3e176d87-0cc6-4198-81dc-11bbaa2080d5

Found on 2025-11-25 01:02

209.6 kBytes 9 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa39563946f31f9df3d5190f063c00b526563cfd390

GraphQL introspection enabled at /graphql
Types: 78 (by kind: ENUM: 7, INPUT_OBJECT: 4, INTERFACE: 2, OBJECT: 60, SCALAR: 4, UNION: 1)
Operations:
- Query: Query | fields: _empty, filterPage, page, searchPage, settings
- Mutation: Mutation | fields: _empty, updateFormState, updateLocationDetails, updateRating
Directives: deprecated, include, skip (total: 3)

Readable stores: 2
settings (args: none) : ratingFormId=4214648 id=459f063d-a13b-435a-80ee-e6165a933562
ratingForm (args: none) : formSubmitButtonText=SUBMIT formSubmittedHeader=Thanks for rating! formSubmittedBodyText=Your feedback is helpful to continuously improve our resources! formDismissButtonText=CLOSE id=3e176d87-0cc6-4198-81dc-11bbaa2080d5 formId=4214648 formHeader=Rate this resource

Found on 2025-11-25 01:02

209.6 kBytes 9 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa39563946f31f9df3d5190f063c00b526570c77b38

GraphQL introspection enabled at /graphql
Types: 78 (by kind: ENUM: 7, INPUT_OBJECT: 4, INTERFACE: 2, OBJECT: 60, SCALAR: 4, UNION: 1)
Operations:
- Query: Query | fields: _empty, filterPage, page, searchPage, settings
- Mutation: Mutation | fields: _empty, updateFormState, updateLocationDetails, updateRating
Directives: deprecated, include, skip (total: 3)

Readable stores: 2
settings (args: none) : ratingFormId=4214648 id=459f063d-a13b-435a-80ee-e6165a933562
ratingForm (args: none) : formDismissButtonText=CLOSE id=3e176d87-0cc6-4198-81dc-11bbaa2080d5 formId=4214648 formHeader=Rate this resource formSubmitButtonText=SUBMIT formSubmittedHeader=Thanks for rating! formSubmittedBodyText=Your feedback is helpful to continuously improve our resources!

Found on 2025-11-16 21:13

209.6 kBytes 9 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa39563946f31f9df3d5190f063c00b5265b7f13a66

GraphQL introspection enabled at /graphql
Types: 78 (by kind: ENUM: 7, INPUT_OBJECT: 4, INTERFACE: 2, OBJECT: 60, SCALAR: 4, UNION: 1)
Operations:
- Query: Query | fields: _empty, filterPage, page, searchPage, settings
- Mutation: Mutation | fields: _empty, updateFormState, updateLocationDetails, updateRating
Directives: deprecated, include, skip (total: 3)

Readable stores: 2
settings (args: none) : id=459f063d-a13b-435a-80ee-e6165a933562 ratingFormId=4214648
ratingForm (args: none) : formHeader=Rate this resource formSubmitButtonText=SUBMIT formSubmittedHeader=Thanks for rating! formSubmittedBodyText=Your feedback is helpful to continuously improve our resources! formDismissButtonText=CLOSE id=3e176d87-0cc6-4198-81dc-11bbaa2080d5 formId=4214648

Found on 2025-11-10 01:32

209.6 kBytes 9 rows

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: api.overtype.ai
Port: 80
URL: http://api.overtype.ai

First seen 2025-10-22 05:45
Last seen 2025-12-30 14:18
Open for 69 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3dc6fa0fedb1de42ec9979c4c4ccbed385430dd98

GraphQL introspection enabled at /graphql
Types: 172 (by kind: ENUM: 29, INPUT_OBJECT: 23, OBJECT: 113, SCALAR: 7)
Operations:
- Query: Query | fields: currentUser, healthcheck, linkRequests, onboardingStatus, userLinkRequests
- Mutation: Mutation | fields: createDomain, sendMagicLink, updateDomainCredits, verifyGoogleAuth, verifyMagicLink
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2025-12-30 14:18

181.0 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa360f6982228919b72a552b3a0642b0dc4849373e4

GraphQL introspection enabled at /graphql
Types: 170 (by kind: ENUM: 29, INPUT_OBJECT: 22, OBJECT: 112, SCALAR: 7)
Operations:
- Query: Query | fields: currentUser, healthcheck, linkRequests, onboardingStatus, userLinkRequests
- Mutation: Mutation | fields: createDomain, sendMagicLink, updateDomainCredits, verifyGoogleAuth, verifyMagicLink
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2025-12-26 13:57

179.5 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa31253183f9d06288d90d659311a8b578909be13b5

GraphQL introspection enabled at /graphql
Types: 169 (by kind: ENUM: 29, INPUT_OBJECT: 22, OBJECT: 111, SCALAR: 7)
Operations:
- Query: Query | fields: currentUser, healthcheck, linkRequests, onboardingStatus, userLinkRequests
- Mutation: Mutation | fields: createDomain, fetchDomainSeoMetrics, sendMagicLink, updateDomainCredits, verifyMagicLink
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2025-12-24 12:20

177.9 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ab2a22002a25fcc432e89972e0f238e09366ea22

GraphQL introspection enabled at /graphql
Types: 51 (by kind: ENUM: 9, INPUT_OBJECT: 5, OBJECT: 32, SCALAR: 5)
Operations:
- Query: Query | fields: healthcheck, linkRequests, pageDetails, pages, userLinkRequests
- Mutation: Mutation | fields: fetchDomainSeoMetrics, fetchDomainTopPages, sendMagicLink, verifyMagicLink
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
healthcheck (args: none) : status=healthy timestamp=2025-12-14T04:02:44.159Z version=1.0.0 uptime=8430.602443213 environment=production

Found on 2025-12-14 04:02

53.0 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ab2a22002a25fcc432e89972e0f238e083e6e253

GraphQL introspection enabled at /graphql
Types: 51 (by kind: ENUM: 9, INPUT_OBJECT: 5, OBJECT: 32, SCALAR: 5)
Operations:
- Query: Query | fields: healthcheck, linkRequests, pageDetails, pages, userLinkRequests
- Mutation: Mutation | fields: fetchDomainSeoMetrics, fetchDomainTopPages, sendMagicLink, verifyMagicLink
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
healthcheck (args: none) : status=healthy timestamp=2025-12-12T17:07:47.267Z version=1.0.0 uptime=58684.668467786 environment=production

Found on 2025-12-12 17:07

53.0 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ab2a22002a25fcc432e89972e0f238e02d8e8726

GraphQL introspection enabled at /graphql
Types: 51 (by kind: ENUM: 9, INPUT_OBJECT: 5, OBJECT: 32, SCALAR: 5)
Operations:
- Query: Query | fields: healthcheck, linkRequests, pageDetails, pages, userLinkRequests
- Mutation: Mutation | fields: fetchDomainSeoMetrics, fetchDomainTopPages, sendMagicLink, verifyMagicLink
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
healthcheck (args: none) : status=healthy timestamp=2025-11-30T19:33:00.531Z version=1.0.0 uptime=82866.609894621 environment=production

Found on 2025-11-30 19:32

53.0 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ab2a22002a25fcc432e89972e0f238e0dda10a5c

GraphQL introspection enabled at /graphql
Types: 51 (by kind: ENUM: 9, INPUT_OBJECT: 5, OBJECT: 32, SCALAR: 5)
Operations:
- Query: Query | fields: healthcheck, linkRequests, pageDetails, pages, userLinkRequests
- Mutation: Mutation | fields: fetchDomainSeoMetrics, fetchDomainTopPages, sendMagicLink, verifyMagicLink
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
healthcheck (args: none) : environment=production status=healthy timestamp=2025-11-28T16:36:36.056Z version=1.0.0 uptime=75499.418463867

Found on 2025-11-28 16:36

53.0 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ab2a22002a25fcc432e89972e0f238e0b7059567

GraphQL introspection enabled at /graphql
Types: 51 (by kind: ENUM: 9, INPUT_OBJECT: 5, OBJECT: 32, SCALAR: 5)
Operations:
- Query: Query | fields: healthcheck, linkRequests, pageDetails, pages, userLinkRequests
- Mutation: Mutation | fields: fetchDomainSeoMetrics, fetchDomainTopPages, sendMagicLink, verifyMagicLink
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
healthcheck (args: none) : environment=production status=healthy timestamp=2025-11-26T18:50:18.200Z version=1.0.0 uptime=87531.726177603

Found on 2025-11-26 18:50

53.0 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ab2a22002a25fcc432e89972e0f238e036a246f4

GraphQL introspection enabled at /graphql
Types: 51 (by kind: ENUM: 9, INPUT_OBJECT: 5, OBJECT: 32, SCALAR: 5)
Operations:
- Query: Query | fields: healthcheck, linkRequests, pageDetails, pages, userLinkRequests
- Mutation: Mutation | fields: fetchDomainSeoMetrics, fetchDomainTopPages, sendMagicLink, verifyMagicLink
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
healthcheck (args: none) : uptime=23258.122048528 environment=production status=healthy timestamp=2025-11-25T00:54:42.065Z version=1.0.0

Found on 2025-11-25 00:54

53.0 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ab2a22002a25fcc432e89972e0f238e0ef13d0b5

GraphQL introspection enabled at /graphql
Types: 51 (by kind: ENUM: 9, INPUT_OBJECT: 5, OBJECT: 32, SCALAR: 5)
Operations:
- Query: Query | fields: healthcheck, linkRequests, pageDetails, pages, userLinkRequests
- Mutation: Mutation | fields: fetchDomainSeoMetrics, fetchDomainTopPages, sendMagicLink, verifyMagicLink
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
healthcheck (args: none) : timestamp=2025-11-25T00:54:42.694Z version=1.0.0 uptime=23258.751396523 environment=production status=healthy

Found on 2025-11-25 00:54

53.0 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ab2a22002a25fcc432e89972e0f238e01810915e

GraphQL introspection enabled at /graphql
Types: 51 (by kind: ENUM: 9, INPUT_OBJECT: 5, OBJECT: 32, SCALAR: 5)
Operations:
- Query: Query | fields: healthcheck, linkRequests, pageDetails, pages, userLinkRequests
- Mutation: Mutation | fields: fetchDomainSeoMetrics, fetchDomainTopPages, sendMagicLink, verifyMagicLink
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
healthcheck (args: none) : version=1.0.0 uptime=23259.040559789 environment=production status=healthy timestamp=2025-11-25T00:54:42.984Z

Found on 2025-11-25 00:54

53.0 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ab2a22002a25fcc432e89972e0f238e0c18b8451

GraphQL introspection enabled at /graphql
Types: 51 (by kind: ENUM: 9, INPUT_OBJECT: 5, OBJECT: 32, SCALAR: 5)
Operations:
- Query: Query | fields: healthcheck, linkRequests, pageDetails, pages, userLinkRequests
- Mutation: Mutation | fields: fetchDomainSeoMetrics, fetchDomainTopPages, sendMagicLink, verifyMagicLink
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
healthcheck (args: none) : timestamp=2025-11-25T00:54:42.043Z version=1.0.0 uptime=23258.099882229 environment=production status=healthy

Found on 2025-11-25 00:54

53.0 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ab2a22002a25fcc432e89972e0f238e0e0333514

GraphQL introspection enabled at /graphql
Types: 51 (by kind: ENUM: 9, INPUT_OBJECT: 5, OBJECT: 32, SCALAR: 5)
Operations:
- Query: Query | fields: healthcheck, linkRequests, pageDetails, pages, userLinkRequests
- Mutation: Mutation | fields: fetchDomainSeoMetrics, fetchDomainTopPages, sendMagicLink, verifyMagicLink
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
healthcheck (args: none) : status=healthy timestamp=2025-11-23T16:17:57.921Z version=1.0.0 uptime=81270.952102765 environment=production

Found on 2025-11-23 16:17

53.0 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ab2a22002a25fcc432e89972e0f238e043375e80

GraphQL introspection enabled at /graphql
Types: 51 (by kind: ENUM: 9, INPUT_OBJECT: 5, OBJECT: 32, SCALAR: 5)
Operations:
- Query: Query | fields: healthcheck, linkRequests, pageDetails, pages, userLinkRequests
- Mutation: Mutation | fields: fetchDomainSeoMetrics, fetchDomainTopPages, sendMagicLink, verifyMagicLink
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
healthcheck (args: none) : status=healthy timestamp=2025-11-20T17:55:40.048Z version=1.0.0 uptime=4683.124597251 environment=production

Found on 2025-11-20 17:55

53.0 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ab2a22002a25fcc432e89972e0f238e03ba4c842

GraphQL introspection enabled at /graphql
Types: 51 (by kind: ENUM: 9, INPUT_OBJECT: 5, OBJECT: 32, SCALAR: 5)
Operations:
- Query: Query | fields: healthcheck, linkRequests, pageDetails, pages, userLinkRequests
- Mutation: Mutation | fields: fetchDomainSeoMetrics, fetchDomainTopPages, sendMagicLink, verifyMagicLink
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
healthcheck (args: none) : status=healthy timestamp=2025-11-16T08:27:27.505Z version=1.0.0 uptime=31156.648863344 environment=production

Found on 2025-11-16 08:27

53.0 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ab2a22002a25fcc432e89972e0f238e068d0b10f

GraphQL introspection enabled at /graphql
Types: 51 (by kind: ENUM: 9, INPUT_OBJECT: 5, OBJECT: 32, SCALAR: 5)
Operations:
- Query: Query | fields: healthcheck, linkRequests, pageDetails, pages, userLinkRequests
- Mutation: Mutation | fields: fetchDomainSeoMetrics, fetchDomainTopPages, sendMagicLink, verifyMagicLink
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
healthcheck (args: none) : environment=production status=healthy timestamp=2025-11-14T08:42:36.493Z version=1.0.0 uptime=34054.90672

Found on 2025-11-14 08:42

53.0 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ab2a22002a25fcc432e89972e0f238e09b0e7194

GraphQL introspection enabled at /graphql
Types: 51 (by kind: ENUM: 9, INPUT_OBJECT: 5, OBJECT: 32, SCALAR: 5)
Operations:
- Query: Query | fields: healthcheck, linkRequests, pageDetails, pages, userLinkRequests
- Mutation: Mutation | fields: fetchDomainSeoMetrics, fetchDomainTopPages, sendMagicLink, verifyMagicLink
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
healthcheck (args: none) : status=healthy timestamp=2025-11-12T08:49:46.933Z version=1.0.0 uptime=18333.957919549 environment=production

Found on 2025-11-12 08:49

53.0 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ab2a22002a25fcc432e89972e0f238e038b03854

GraphQL introspection enabled at /graphql
Types: 51 (by kind: ENUM: 9, INPUT_OBJECT: 5, OBJECT: 32, SCALAR: 5)
Operations:
- Query: Query | fields: healthcheck, linkRequests, pageDetails, pages, userLinkRequests
- Mutation: Mutation | fields: fetchDomainSeoMetrics, fetchDomainTopPages, sendMagicLink, verifyMagicLink
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
healthcheck (args: none) : environment=production status=healthy timestamp=2025-11-10T10:58:38.713Z version=1.0.0 uptime=30457.229103763

Found on 2025-11-10 10:58

53.0 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ab2a22002a25fcc432e89972e0f238e0431aa915

GraphQL introspection enabled at /graphql
Types: 51 (by kind: ENUM: 9, INPUT_OBJECT: 5, OBJECT: 32, SCALAR: 5)
Operations:
- Query: Query | fields: healthcheck, linkRequests, pageDetails, pages, userLinkRequests
- Mutation: Mutation | fields: fetchDomainSeoMetrics, fetchDomainTopPages, sendMagicLink, verifyMagicLink
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
healthcheck (args: none) : version=1.0.0 uptime=29322.864411725 environment=production status=healthy timestamp=2025-11-08T09:38:41.487Z

Found on 2025-11-08 09:38

53.0 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ab2a22002a25fcc432e89972e0f238e02713b911

GraphQL introspection enabled at /graphql
Types: 51 (by kind: ENUM: 9, INPUT_OBJECT: 5, OBJECT: 32, SCALAR: 5)
Operations:
- Query: Query | fields: healthcheck, linkRequests, pageDetails, pages, userLinkRequests
- Mutation: Mutation | fields: fetchDomainSeoMetrics, fetchDomainTopPages, sendMagicLink, verifyMagicLink
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
healthcheck (args: none) : timestamp=2025-11-06T15:46:55.527Z version=1.0.0 uptime=54317.491636351 environment=production status=healthy

Found on 2025-11-06 15:46

53.0 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ab2a22002a25fcc432e89972e0f238e016b35ce5

GraphQL introspection enabled at /graphql
Types: 51 (by kind: ENUM: 9, INPUT_OBJECT: 5, OBJECT: 32, SCALAR: 5)
Operations:
- Query: Query | fields: healthcheck, linkRequests, pageDetails, pages, userLinkRequests
- Mutation: Mutation | fields: fetchDomainSeoMetrics, fetchDomainTopPages, sendMagicLink, verifyMagicLink
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
healthcheck (args: none) : environment=production status=healthy timestamp=2025-11-04T13:36:40.088Z version=1.0.0 uptime=52156.443590203

Found on 2025-11-04 13:36

53.0 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ab2a22002a25fcc432e89972e0f238e07df1feff

GraphQL introspection enabled at /graphql
Types: 51 (by kind: ENUM: 9, INPUT_OBJECT: 5, OBJECT: 32, SCALAR: 5)
Operations:
- Query: Query | fields: healthcheck, linkRequests, pageDetails, pages, userLinkRequests
- Mutation: Mutation | fields: fetchDomainSeoMetrics, fetchDomainTopPages, sendMagicLink, verifyMagicLink
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
healthcheck (args: none) : environment=production status=healthy timestamp=2025-11-02T22:04:15.054Z version=1.0.0 uptime=85369.836572157

Found on 2025-11-02 22:04

53.0 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ab2a22002a25fcc432e89972e0f238e09689ce55

GraphQL introspection enabled at /graphql
Types: 51 (by kind: ENUM: 9, INPUT_OBJECT: 5, OBJECT: 32, SCALAR: 5)
Operations:
- Query: Query | fields: healthcheck, linkRequests, pageDetails, pages, userLinkRequests
- Mutation: Mutation | fields: fetchDomainSeoMetrics, fetchDomainTopPages, sendMagicLink, verifyMagicLink
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
healthcheck (args: none) : uptime=62261.228560066 environment=production status=healthy timestamp=2025-11-01T14:55:12.452Z version=1.0.0

Found on 2025-11-01 14:55

53.0 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ab2a22002a25fcc432e89972e0f238e0c668bc2b

GraphQL introspection enabled at /graphql
Types: 51 (by kind: ENUM: 9, INPUT_OBJECT: 5, OBJECT: 32, SCALAR: 5)
Operations:
- Query: Query | fields: healthcheck, linkRequests, pageDetails, pages, userLinkRequests
- Mutation: Mutation | fields: fetchDomainSeoMetrics, fetchDomainTopPages, sendMagicLink, verifyMagicLink
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
healthcheck (args: none) : status=healthy timestamp=2025-10-28T15:47:38.755Z version=1.0.0 uptime=22661.60242346 environment=production

Found on 2025-10-28 15:47

53.0 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ab2a22002a25fcc432e89972e0f238e09b79aa93

GraphQL introspection enabled at /graphql
Types: 51 (by kind: ENUM: 9, INPUT_OBJECT: 5, OBJECT: 32, SCALAR: 5)
Operations:
- Query: Query | fields: healthcheck, linkRequests, pageDetails, pages, userLinkRequests
- Mutation: Mutation | fields: fetchDomainSeoMetrics, fetchDomainTopPages, sendMagicLink, verifyMagicLink
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
healthcheck (args: none) : version=1.0.0 uptime=8537.16275532 environment=production status=healthy timestamp=2025-10-26T10:40:44.936Z

Found on 2025-10-26 10:40

53.0 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ab2a22002a25fcc432e89972e0f238e048ab9b18

GraphQL introspection enabled at /graphql
Types: 51 (by kind: ENUM: 9, INPUT_OBJECT: 5, OBJECT: 32, SCALAR: 5)
Operations:
- Query: Query | fields: healthcheck, linkRequests, pageDetails, pages, userLinkRequests
- Mutation: Mutation | fields: fetchDomainSeoMetrics, fetchDomainTopPages, sendMagicLink, verifyMagicLink
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
healthcheck (args: none) : uptime=14656.192132488 environment=production status=healthy timestamp=2025-10-24T11:16:57.058Z version=1.0.0

Found on 2025-10-24 11:16

53.0 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ab2a22002a25fcc432e89972e0f238e08a781560

GraphQL introspection enabled at /graphql
Types: 51 (by kind: ENUM: 9, INPUT_OBJECT: 5, OBJECT: 32, SCALAR: 5)
Operations:
- Query: Query | fields: healthcheck, linkRequests, pageDetails, pages, userLinkRequests
- Mutation: Mutation | fields: fetchDomainSeoMetrics, fetchDomainTopPages, sendMagicLink, verifyMagicLink
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
healthcheck (args: none) : status=healthy timestamp=2025-10-22T05:45:44.290Z version=1.0.0 uptime=815.578909526 environment=production

Found on 2025-10-22 05:45

53.0 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ab2a22002a25fcc432e89972e0f238e0f713e034

GraphQL introspection enabled at /graphql
Types: 51 (by kind: ENUM: 9, INPUT_OBJECT: 5, OBJECT: 32, SCALAR: 5)
Operations:
- Query: Query | fields: healthcheck, linkRequests, pageDetails, pages, userLinkRequests
- Mutation: Mutation | fields: fetchDomainSeoMetrics, fetchDomainTopPages, sendMagicLink, verifyMagicLink
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
healthcheck (args: none) : status=healthy timestamp=2025-10-22T05:46:06.233Z version=1.0.0 uptime=837.522104517 environment=production

Found on 2025-10-22 05:45

53.0 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ab2a22002a25fcc432e89972e0f238e0fd83423a

GraphQL introspection enabled at /graphql
Types: 51 (by kind: ENUM: 9, INPUT_OBJECT: 5, OBJECT: 32, SCALAR: 5)
Operations:
- Query: Query | fields: healthcheck, linkRequests, pageDetails, pages, userLinkRequests
- Mutation: Mutation | fields: fetchDomainSeoMetrics, fetchDomainTopPages, sendMagicLink, verifyMagicLink
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
healthcheck (args: none) : status=healthy timestamp=2025-10-22T05:45:45.870Z version=1.0.0 uptime=817.159188435 environment=production

Found on 2025-10-22 05:45

53.0 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ab2a22002a25fcc432e89972e0f238e0823e8cd0

GraphQL introspection enabled at /graphql
Types: 51 (by kind: ENUM: 9, INPUT_OBJECT: 5, OBJECT: 32, SCALAR: 5)
Operations:
- Query: Query | fields: healthcheck, linkRequests, pageDetails, pages, userLinkRequests
- Mutation: Mutation | fields: fetchDomainSeoMetrics, fetchDomainTopPages, sendMagicLink, verifyMagicLink
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
healthcheck (args: none) : timestamp=2025-10-22T05:45:46.053Z version=1.0.0 uptime=817.341807957 environment=production status=healthy

Found on 2025-10-22 05:45

53.0 kBytes 5 rows

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 13.248.244.96
Domain: api.overtype.ai
Port: 443
URL: https://api.overtype.ai

First seen 2025-10-22 05:45
Last seen 2025-12-30 14:18
Open for 69 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3dc6fa0fedb1de42ec9979c4c4ccbed385430dd98

GraphQL introspection enabled at /graphql
Types: 172 (by kind: ENUM: 29, INPUT_OBJECT: 23, OBJECT: 113, SCALAR: 7)
Operations:
- Query: Query | fields: currentUser, healthcheck, linkRequests, onboardingStatus, userLinkRequests
- Mutation: Mutation | fields: createDomain, sendMagicLink, updateDomainCredits, verifyGoogleAuth, verifyMagicLink
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2025-12-30 14:18

181.0 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa360f6982228919b72a552b3a0642b0dc4849373e4

GraphQL introspection enabled at /graphql
Types: 170 (by kind: ENUM: 29, INPUT_OBJECT: 22, OBJECT: 112, SCALAR: 7)
Operations:
- Query: Query | fields: currentUser, healthcheck, linkRequests, onboardingStatus, userLinkRequests
- Mutation: Mutation | fields: createDomain, sendMagicLink, updateDomainCredits, verifyGoogleAuth, verifyMagicLink
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2025-12-26 13:57

179.5 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa31253183f9d06288d90d659311a8b578909be13b5

GraphQL introspection enabled at /graphql
Types: 169 (by kind: ENUM: 29, INPUT_OBJECT: 22, OBJECT: 111, SCALAR: 7)
Operations:
- Query: Query | fields: currentUser, healthcheck, linkRequests, onboardingStatus, userLinkRequests
- Mutation: Mutation | fields: createDomain, fetchDomainSeoMetrics, sendMagicLink, updateDomainCredits, verifyMagicLink
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2025-12-24 12:20

177.9 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ab2a22002a25fcc432e89972e0f238e05aea9eb8

GraphQL introspection enabled at /graphql
Types: 51 (by kind: ENUM: 9, INPUT_OBJECT: 5, OBJECT: 32, SCALAR: 5)
Operations:
- Query: Query | fields: healthcheck, linkRequests, pageDetails, pages, userLinkRequests
- Mutation: Mutation | fields: fetchDomainSeoMetrics, fetchDomainTopPages, sendMagicLink, verifyMagicLink
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
healthcheck (args: none) : timestamp=2025-12-14T04:02:39.802Z version=1.0.0 uptime=8426.24521809 environment=production status=healthy

Found on 2025-12-14 04:02

53.0 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ab2a22002a25fcc432e89972e0f238e0507c99d2

GraphQL introspection enabled at /graphql
Types: 51 (by kind: ENUM: 9, INPUT_OBJECT: 5, OBJECT: 32, SCALAR: 5)
Operations:
- Query: Query | fields: healthcheck, linkRequests, pageDetails, pages, userLinkRequests
- Mutation: Mutation | fields: fetchDomainSeoMetrics, fetchDomainTopPages, sendMagicLink, verifyMagicLink
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
healthcheck (args: none) : version=1.0.0 uptime=58682.640596 environment=production status=healthy timestamp=2025-12-12T17:07:45.239Z

Found on 2025-12-12 17:07

53.0 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ab2a22002a25fcc432e89972e0f238e005254c1a

GraphQL introspection enabled at /graphql
Types: 51 (by kind: ENUM: 9, INPUT_OBJECT: 5, OBJECT: 32, SCALAR: 5)
Operations:
- Query: Query | fields: healthcheck, linkRequests, pageDetails, pages, userLinkRequests
- Mutation: Mutation | fields: fetchDomainSeoMetrics, fetchDomainTopPages, sendMagicLink, verifyMagicLink
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
healthcheck (args: none) : timestamp=2025-11-30T19:32:53.134Z version=1.0.0 uptime=82859.212620895 environment=production status=healthy

Found on 2025-11-30 19:32

53.0 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ab2a22002a25fcc432e89972e0f238e076633d2c

GraphQL introspection enabled at /graphql
Types: 51 (by kind: ENUM: 9, INPUT_OBJECT: 5, OBJECT: 32, SCALAR: 5)
Operations:
- Query: Query | fields: healthcheck, linkRequests, pageDetails, pages, userLinkRequests
- Mutation: Mutation | fields: fetchDomainSeoMetrics, fetchDomainTopPages, sendMagicLink, verifyMagicLink
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
healthcheck (args: none) : environment=production status=healthy timestamp=2025-11-28T16:36:36.078Z version=1.0.0 uptime=75499.441068107

Found on 2025-11-28 16:36

53.0 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ab2a22002a25fcc432e89972e0f238e066dfeb88

GraphQL introspection enabled at /graphql
Types: 51 (by kind: ENUM: 9, INPUT_OBJECT: 5, OBJECT: 32, SCALAR: 5)
Operations:
- Query: Query | fields: healthcheck, linkRequests, pageDetails, pages, userLinkRequests
- Mutation: Mutation | fields: fetchDomainSeoMetrics, fetchDomainTopPages, sendMagicLink, verifyMagicLink
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
healthcheck (args: none) : timestamp=2025-11-26T18:50:14.380Z version=1.0.0 uptime=87527.906314995 environment=production status=healthy

Found on 2025-11-26 18:50

53.0 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ab2a22002a25fcc432e89972e0f238e002a4edd2

GraphQL introspection enabled at /graphql
Types: 51 (by kind: ENUM: 9, INPUT_OBJECT: 5, OBJECT: 32, SCALAR: 5)
Operations:
- Query: Query | fields: healthcheck, linkRequests, pageDetails, pages, userLinkRequests
- Mutation: Mutation | fields: fetchDomainSeoMetrics, fetchDomainTopPages, sendMagicLink, verifyMagicLink
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
healthcheck (args: none) : status=healthy timestamp=2025-11-25T00:54:38.516Z version=1.0.0 uptime=23254.5728994 environment=production

Found on 2025-11-25 00:54

53.0 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ab2a22002a25fcc432e89972e0f238e0d4b86695

GraphQL introspection enabled at /graphql
Types: 51 (by kind: ENUM: 9, INPUT_OBJECT: 5, OBJECT: 32, SCALAR: 5)
Operations:
- Query: Query | fields: healthcheck, linkRequests, pageDetails, pages, userLinkRequests
- Mutation: Mutation | fields: fetchDomainSeoMetrics, fetchDomainTopPages, sendMagicLink, verifyMagicLink
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
healthcheck (args: none) : status=healthy timestamp=2025-11-25T00:54:39.633Z version=1.0.0 uptime=23255.690051565 environment=production

Found on 2025-11-25 00:54

53.0 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ab2a22002a25fcc432e89972e0f238e087c9b7c1

GraphQL introspection enabled at /graphql
Types: 51 (by kind: ENUM: 9, INPUT_OBJECT: 5, OBJECT: 32, SCALAR: 5)
Operations:
- Query: Query | fields: healthcheck, linkRequests, pageDetails, pages, userLinkRequests
- Mutation: Mutation | fields: fetchDomainSeoMetrics, fetchDomainTopPages, sendMagicLink, verifyMagicLink
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
healthcheck (args: none) : status=healthy timestamp=2025-11-25T00:54:39.956Z version=1.0.0 uptime=23256.013191362 environment=production

Found on 2025-11-25 00:54

53.0 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ab2a22002a25fcc432e89972e0f238e0fe7b8979

GraphQL introspection enabled at /graphql
Types: 51 (by kind: ENUM: 9, INPUT_OBJECT: 5, OBJECT: 32, SCALAR: 5)
Operations:
- Query: Query | fields: healthcheck, linkRequests, pageDetails, pages, userLinkRequests
- Mutation: Mutation | fields: fetchDomainSeoMetrics, fetchDomainTopPages, sendMagicLink, verifyMagicLink
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
healthcheck (args: none) : timestamp=2025-11-25T00:54:40.693Z version=1.0.0 uptime=23256.749610474 environment=production status=healthy

Found on 2025-11-25 00:54

53.0 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ab2a22002a25fcc432e89972e0f238e0609eb737

GraphQL introspection enabled at /graphql
Types: 51 (by kind: ENUM: 9, INPUT_OBJECT: 5, OBJECT: 32, SCALAR: 5)
Operations:
- Query: Query | fields: healthcheck, linkRequests, pageDetails, pages, userLinkRequests
- Mutation: Mutation | fields: fetchDomainSeoMetrics, fetchDomainTopPages, sendMagicLink, verifyMagicLink
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
healthcheck (args: none) : version=1.0.0 uptime=83927.157603768 environment=production status=healthy timestamp=2025-11-23T17:02:14.127Z

Found on 2025-11-23 17:01

53.0 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ab2a22002a25fcc432e89972e0f238e0af49d145

GraphQL introspection enabled at /graphql
Types: 51 (by kind: ENUM: 9, INPUT_OBJECT: 5, OBJECT: 32, SCALAR: 5)
Operations:
- Query: Query | fields: healthcheck, linkRequests, pageDetails, pages, userLinkRequests
- Mutation: Mutation | fields: fetchDomainSeoMetrics, fetchDomainTopPages, sendMagicLink, verifyMagicLink
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
healthcheck (args: none) : environment=production status=healthy timestamp=2025-11-21T07:37:35.291Z version=1.0.0 uptime=53998.367531852

Found on 2025-11-21 07:37

53.0 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ab2a22002a25fcc432e89972e0f238e095116e80

GraphQL introspection enabled at /graphql
Types: 51 (by kind: ENUM: 9, INPUT_OBJECT: 5, OBJECT: 32, SCALAR: 5)
Operations:
- Query: Query | fields: healthcheck, linkRequests, pageDetails, pages, userLinkRequests
- Mutation: Mutation | fields: fetchDomainSeoMetrics, fetchDomainTopPages, sendMagicLink, verifyMagicLink
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
healthcheck (args: none) : environment=production status=healthy timestamp=2025-11-16T17:54:26.857Z version=1.0.0 uptime=65176.001427376

Found on 2025-11-16 17:54

53.0 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ab2a22002a25fcc432e89972e0f238e0a6e5f24d

GraphQL introspection enabled at /graphql
Types: 51 (by kind: ENUM: 9, INPUT_OBJECT: 5, OBJECT: 32, SCALAR: 5)
Operations:
- Query: Query | fields: healthcheck, linkRequests, pageDetails, pages, userLinkRequests
- Mutation: Mutation | fields: fetchDomainSeoMetrics, fetchDomainTopPages, sendMagicLink, verifyMagicLink
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
healthcheck (args: none) : uptime=84304.27710195 environment=production status=healthy timestamp=2025-11-14T22:40:05.863Z version=1.0.0

Found on 2025-11-14 22:40

53.0 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ab2a22002a25fcc432e89972e0f238e0fd5aed1b

GraphQL introspection enabled at /graphql
Types: 51 (by kind: ENUM: 9, INPUT_OBJECT: 5, OBJECT: 32, SCALAR: 5)
Operations:
- Query: Query | fields: healthcheck, linkRequests, pageDetails, pages, userLinkRequests
- Mutation: Mutation | fields: fetchDomainSeoMetrics, fetchDomainTopPages, sendMagicLink, verifyMagicLink
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
healthcheck (args: none) : status=healthy timestamp=2025-11-12T22:31:30.087Z version=1.0.0 uptime=4983.352887284 environment=production

Found on 2025-11-12 22:31

53.0 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ab2a22002a25fcc432e89972e0f238e0a2c981e8

GraphQL introspection enabled at /graphql
Types: 51 (by kind: ENUM: 9, INPUT_OBJECT: 5, OBJECT: 32, SCALAR: 5)
Operations:
- Query: Query | fields: healthcheck, linkRequests, pageDetails, pages, userLinkRequests
- Mutation: Mutation | fields: fetchDomainSeoMetrics, fetchDomainTopPages, sendMagicLink, verifyMagicLink
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
healthcheck (args: none) : uptime=82263.420214739 environment=production status=healthy timestamp=2025-11-11T01:22:04.904Z version=1.0.0

Found on 2025-11-11 01:22

53.0 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ab2a22002a25fcc432e89972e0f238e070eb9153

GraphQL introspection enabled at /graphql
Types: 51 (by kind: ENUM: 9, INPUT_OBJECT: 5, OBJECT: 32, SCALAR: 5)
Operations:
- Query: Query | fields: healthcheck, linkRequests, pageDetails, pages, userLinkRequests
- Mutation: Mutation | fields: fetchDomainSeoMetrics, fetchDomainTopPages, sendMagicLink, verifyMagicLink
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
healthcheck (args: none) : status=healthy timestamp=2025-11-08T22:49:51.158Z version=1.0.0 uptime=76792.535290158 environment=production

Found on 2025-11-08 22:49

53.0 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ab2a22002a25fcc432e89972e0f238e09540fbbe

GraphQL introspection enabled at /graphql
Types: 51 (by kind: ENUM: 9, INPUT_OBJECT: 5, OBJECT: 32, SCALAR: 5)
Operations:
- Query: Query | fields: healthcheck, linkRequests, pageDetails, pages, userLinkRequests
- Mutation: Mutation | fields: fetchDomainSeoMetrics, fetchDomainTopPages, sendMagicLink, verifyMagicLink
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
healthcheck (args: none) : status=healthy timestamp=2025-11-07T10:33:23.606Z version=1.0.0 uptime=35027.749226681 environment=production

Found on 2025-11-07 10:32

53.0 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ab2a22002a25fcc432e89972e0f238e03569d65f

GraphQL introspection enabled at /graphql
Types: 51 (by kind: ENUM: 9, INPUT_OBJECT: 5, OBJECT: 32, SCALAR: 5)
Operations:
- Query: Query | fields: healthcheck, linkRequests, pageDetails, pages, userLinkRequests
- Mutation: Mutation | fields: fetchDomainSeoMetrics, fetchDomainTopPages, sendMagicLink, verifyMagicLink
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
healthcheck (args: none) : uptime=15881.089705282 environment=production status=healthy timestamp=2025-11-05T04:33:29.114Z version=1.0.0

Found on 2025-11-05 04:33

53.0 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ab2a22002a25fcc432e89972e0f238e093a780c7

GraphQL introspection enabled at /graphql
Types: 51 (by kind: ENUM: 9, INPUT_OBJECT: 5, OBJECT: 32, SCALAR: 5)
Operations:
- Query: Query | fields: healthcheck, linkRequests, pageDetails, pages, userLinkRequests
- Mutation: Mutation | fields: fetchDomainSeoMetrics, fetchDomainTopPages, sendMagicLink, verifyMagicLink
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
healthcheck (args: none) : status=healthy timestamp=2025-11-03T05:00:16.008Z version=1.0.0 uptime=22719.309807902 environment=production

Found on 2025-11-03 05:00

53.0 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ab2a22002a25fcc432e89972e0f238e00970feb7

GraphQL introspection enabled at /graphql
Types: 51 (by kind: ENUM: 9, INPUT_OBJECT: 5, OBJECT: 32, SCALAR: 5)
Operations:
- Query: Query | fields: healthcheck, linkRequests, pageDetails, pages, userLinkRequests
- Mutation: Mutation | fields: fetchDomainSeoMetrics, fetchDomainTopPages, sendMagicLink, verifyMagicLink
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
healthcheck (args: none) : status=healthy timestamp=2025-11-01T23:56:21.694Z version=1.0.0 uptime=5696.477288658 environment=production

Found on 2025-11-01 23:56

53.0 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ab2a22002a25fcc432e89972e0f238e030127dd3

GraphQL introspection enabled at /graphql
Types: 51 (by kind: ENUM: 9, INPUT_OBJECT: 5, OBJECT: 32, SCALAR: 5)
Operations:
- Query: Query | fields: healthcheck, linkRequests, pageDetails, pages, userLinkRequests
- Mutation: Mutation | fields: fetchDomainSeoMetrics, fetchDomainTopPages, sendMagicLink, verifyMagicLink
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
healthcheck (args: none) : environment=production status=healthy timestamp=2025-10-30T19:55:38.617Z version=1.0.0 uptime=36012.906006093

Found on 2025-10-30 19:55

53.0 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ab2a22002a25fcc432e89972e0f238e08e62cb51

GraphQL introspection enabled at /graphql
Types: 51 (by kind: ENUM: 9, INPUT_OBJECT: 5, OBJECT: 32, SCALAR: 5)
Operations:
- Query: Query | fields: healthcheck, linkRequests, pageDetails, pages, userLinkRequests
- Mutation: Mutation | fields: fetchDomainSeoMetrics, fetchDomainTopPages, sendMagicLink, verifyMagicLink
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
healthcheck (args: none) : status=healthy timestamp=2025-10-26T10:40:43.651Z version=1.0.0 uptime=8535.878095199 environment=production

Found on 2025-10-26 10:40

53.0 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ab2a22002a25fcc432e89972e0f238e08950a8e0

GraphQL introspection enabled at /graphql
Types: 51 (by kind: ENUM: 9, INPUT_OBJECT: 5, OBJECT: 32, SCALAR: 5)
Operations:
- Query: Query | fields: healthcheck, linkRequests, pageDetails, pages, userLinkRequests
- Mutation: Mutation | fields: fetchDomainSeoMetrics, fetchDomainTopPages, sendMagicLink, verifyMagicLink
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
healthcheck (args: none) : status=healthy timestamp=2025-10-24T11:16:54.423Z version=1.0.0 uptime=14653.556915898 environment=production

Found on 2025-10-24 11:16

53.0 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ab2a22002a25fcc432e89972e0f238e005ceda11

GraphQL introspection enabled at /graphql
Types: 51 (by kind: ENUM: 9, INPUT_OBJECT: 5, OBJECT: 32, SCALAR: 5)
Operations:
- Query: Query | fields: healthcheck, linkRequests, pageDetails, pages, userLinkRequests
- Mutation: Mutation | fields: fetchDomainSeoMetrics, fetchDomainTopPages, sendMagicLink, verifyMagicLink
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
healthcheck (args: none) : timestamp=2025-10-22T05:45:57.187Z version=1.0.0 uptime=828.475928299 environment=production status=healthy

Found on 2025-10-22 05:45

53.0 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ab2a22002a25fcc432e89972e0f238e0e6f93fb2

GraphQL introspection enabled at /graphql
Types: 51 (by kind: ENUM: 9, INPUT_OBJECT: 5, OBJECT: 32, SCALAR: 5)
Operations:
- Query: Query | fields: healthcheck, linkRequests, pageDetails, pages, userLinkRequests
- Mutation: Mutation | fields: fetchDomainSeoMetrics, fetchDomainTopPages, sendMagicLink, verifyMagicLink
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
healthcheck (args: none) : version=1.0.0 uptime=839.759551817 environment=production status=healthy timestamp=2025-10-22T05:46:08.470Z

Found on 2025-10-22 05:45

53.0 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ab2a22002a25fcc432e89972e0f238e006e5603a

GraphQL introspection enabled at /graphql
Types: 51 (by kind: ENUM: 9, INPUT_OBJECT: 5, OBJECT: 32, SCALAR: 5)
Operations:
- Query: Query | fields: healthcheck, linkRequests, pageDetails, pages, userLinkRequests
- Mutation: Mutation | fields: fetchDomainSeoMetrics, fetchDomainTopPages, sendMagicLink, verifyMagicLink
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
healthcheck (args: none) : status=healthy timestamp=2025-10-22T05:45:44.259Z version=1.0.0 uptime=815.547660167 environment=production

Found on 2025-10-22 05:45

53.0 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ab2a22002a25fcc432e89972e0f238e01be4ab23

GraphQL introspection enabled at /graphql
Types: 51 (by kind: ENUM: 9, INPUT_OBJECT: 5, OBJECT: 32, SCALAR: 5)
Operations:
- Query: Query | fields: healthcheck, linkRequests, pageDetails, pages, userLinkRequests
- Mutation: Mutation | fields: fetchDomainSeoMetrics, fetchDomainTopPages, sendMagicLink, verifyMagicLink
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
healthcheck (args: none) : uptime=814.70966215 environment=production status=healthy timestamp=2025-10-22T05:45:43.421Z version=1.0.0

Found on 2025-10-22 05:45

53.0 kBytes 5 rows

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: dev.api.convos.snappykraken.app
Port: 443
URL: https://dev.api.convos.snappykraken.app

First seen 2025-12-05 00:17
Last seen 2025-12-30 12:57
Open for 25 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa34adaabe68cf3be96cf6a4d80d5f8e2cddc597f1b

GraphQL introspection enabled at /graphql
Types: 195 (by kind: ENUM: 7, INPUT_OBJECT: 108, OBJECT: 72, SCALAR: 8)
Operations:
- Query: Query | fields: fetchCampaignConversations, fetchCampaignMetrics, fetchCombinedConversations, fetchConversationMetrics, fetchConversations
- Mutation: Mutation | fields: addUserCalendarLink, approveUser, archiveCampaign, archiveScheduleMessage, assignIonLakeNumber
- Subscription: GraphqlSubscription | fields: pollCampaign, pollContactMessage, pollMessage
Directives: deprecated, include, oneOf, skip (total: 4)

Found on 2025-12-30 12:57

307.9 kBytes

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: api.fission.xyz
Port: 443
URL: https://api.fission.xyz

First seen 2025-11-18 00:58
Last seen 2025-12-30 12:57
Open for 42 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3725e3b1cf7c4a0209a418da50b9d271825e7a238

GraphQL introspection enabled at /graphql
Types: 81 (by kind: ENUM: 17, INPUT_OBJECT: 5, OBJECT: 50, SCALAR: 9)
Operations:
- Query: Query | fields: app_env, asset_details, crypto, feeder_details, feeders
- Mutation: Mutation | fields: register_wallet, reset_password_email, send_confirm_email, start_fund_buy_order, start_redemption
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2025-12-30 12:57

83.7 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3040e53f8b8a9671ccb208451c80e6152c011612e

GraphQL introspection enabled at /graphql
Types: 71 (by kind: ENUM: 14, INPUT_OBJECT: 4, OBJECT: 45, SCALAR: 8)
Operations:
- Query: Query | fields: app_env, asset_details, crypto, feeder_details, feeders
- Mutation: Mutation | fields: register_wallet, reset_password_email, send_confirm_email, start_redemption
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2025-11-24 10:44

73.1 kBytes

Create report

GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: cms.instituto-ipe.org
Port: 443
URL: https://cms.instituto-ipe.org

First seen 2025-12-12 00:38
Last seen 2025-12-30 12:44
Open for 18 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db2337d3d62337d3d62337d3d62337d3d62337d3d62337d3d6
```
GraphQL introspection enabled at /api/graphql
```
  Found on 2025-12-30 12:44
Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: development-api.certify-ed.com
Port: 443
URL: https://development-api.certify-ed.com

First seen 2025-11-21 04:19
Last seen 2025-12-30 12:03
Open for 39 days

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d6d6f7266f4bfe653dec1f4d939048a6e996486034

GraphQL introspection enabled at /api/graphql
Types: 272 (by kind: ENUM: 18, INPUT_OBJECT: 83, INTERFACE: 1, OBJECT: 164, SCALAR: 6)
Operations:
- Query: RootQueryType | fields: accounts, certificationExam, certificationProgresses, courses, currentAccount
- Mutation: RootMutationType | fields: acceptTerms, addCourseAssets, addSimulation, addVrVideoExample, cancelReminder
- Subscription: RootSubscriptionType | fields: notificationFeed, seedCourseFeed
Directives: include, skip (total: 2)

Found on 2025-12-30 12:03

213.5 kBytes

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: staging-api.certify-ed.com
Port: 443
URL: https://staging-api.certify-ed.com

First seen 2025-11-21 04:39
Last seen 2025-12-30 12:02
Open for 39 days

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d6d6f7266f4bfe653dec1f4d939048a6e996486034

GraphQL introspection enabled at /api/graphql
Types: 272 (by kind: ENUM: 18, INPUT_OBJECT: 83, INTERFACE: 1, OBJECT: 164, SCALAR: 6)
Operations:
- Query: RootQueryType | fields: accounts, certificationExam, certificationProgresses, courses, currentAccount
- Mutation: RootMutationType | fields: acceptTerms, addCourseAssets, addSimulation, addVrVideoExample, cancelReminder
- Subscription: RootSubscriptionType | fields: notificationFeed, seedCourseFeed
Directives: include, skip (total: 2)

Found on 2025-12-30 12:02

213.5 kBytes

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: rjr.quiklydemo.com
Port: 443
URL: https://rjr.quiklydemo.com

First seen 2025-11-11 00:16
Last seen 2025-12-30 11:59
Open for 49 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa32c38a4a2b37474f296969d13723a4e1e3b23bc19

GraphQL introspection enabled at /graphql
Types: 193 (by kind: ENUM: 4, INPUT_OBJECT: 42, INTERFACE: 13, OBJECT: 123, SCALAR: 9, UNION: 2)
Operations:
- Query: Query | fields: asset, backgroundImage, brand, brandSmsListSubscriptionStatus, brands
- Mutation: Mutation | fields: addToIneligibleList, answerSurvey, appStoreUrlMutation, checkEligibility, confirmPhone
- Subscription: Subscription | fields: claimedForDeal, wantInCreated, wantInUpdated
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2025-12-30 11:59

324.7 kBytes

Create report

GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: demo-app.hemlane.com
Port: 443
URL: https://demo-app.hemlane.com

First seen 2025-10-15 19:08
Last seen 2025-12-26 21:29
Open for 72 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa3
```
GraphQL introspection enabled at /graphql
```
  Found on 2025-12-26 21:29
Create report
GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: api-demo.savvywealth.com
Port: 443
URL: https://api-demo.savvywealth.com

First seen 2025-11-14 01:33
Last seen 2025-12-24 23:25
Open for 40 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa3
```
GraphQL introspection enabled at /graphql
```
  Found on 2025-12-24 23:25
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa3e5bcc3d626a958060b336633576a442543977ff1
```
GraphQL introspection enabled at /graphql
Types: 661 (by kind: ENUM: 115, INPUT_OBJECT: 212, OBJECT: 321, SCALAR: 11, UNION: 2)
Operations:
- Query: Query | fields: account, accountNewsArticles, accountSleeve, accountTrendingHeadlines, activitySummary
- Mutation: Mutation | fields: activateServiceCalendarForHousehold, addFamilyMembers, addSecondaryPortfolio, beginMfaEnrollment, bulkCreateOrUpdateHouseholds
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)
```
  Found on 2025-11-20 07:47
  
  889.0 kBytes
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 75.2.60.68
Domain: event-search.thrugo.com
Port: 80
URL: http://event-search.thrugo.com

First seen 2025-11-14 01:33
Last seen 2025-12-23 09:57
Open for 39 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1aad035493cddcfe4812df260812df260812df260812df260
```
Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
GET /api/events
GET /api/events/referrals
```
  Found on 2025-12-23 09:57
Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 75.2.60.68
Domain: api.bo.wellywork.com
Port: 80
URL: http://api.bo.wellywork.com

First seen 2025-11-16 02:04
Last seen 2025-12-23 00:28
Open for 36 days

Severity: info
Fingerprint: 5733ddf49ff49cd151e75e4b936c53ec32c1356e8afd8f49e6e3762ce71eb22f

Public Swagger UI/API detected at path: /v3/api-docs - sample paths:
DELETE /bo/user-account/delete-by-owner/{id}
GET /bo/analytics/categories
GET /bo/analytics/kpis
GET /bo/analytics/revenues
GET /bo/analytics/trends
GET /bo/asset_users
GET /bo/asset_users/select
GET /bo/asset_users/{id}
GET /bo/auth
GET /bo/auth/logout
GET /bo/auth/refresh
GET /bo/batch/executions
GET /bo/batch/history/{batchType}
GET /bo/batch/last-execution/{batchType}
GET /bo/batch/recent-failures
GET /bo/batch/transaction-timeout/count
GET /bo/boxs
GET /bo/campaigns
GET /bo/category
GET /bo/companies
GET /bo/companies/names
GET /bo/companies/{id}
GET /bo/customers
GET /bo/customers/by-company/{companyId}
GET /bo/customers/searchBy
GET /bo/customers/{id}
GET /bo/dashboard/allAccountCuNb
GET /bo/dashboard/allAccountSeNb
GET /bo/dashboard/allActifAccountCuNb
GET /bo/dashboard/allActifAccountCuNbByLevel
GET /bo/dashboard/allActifAccountSeNb
GET /bo/dashboard/balance
GET /bo/dashboard/companyNumber
GET /bo/dashboard/nbOrders
GET /bo/dashboard/nbVouchers
GET /bo/dashboard/stats
GET /bo/dashboard/totalAmountByLevel
GET /bo/dashboard/totalAmountBySeller
GET /bo/dashboard/totalCommission
GET /bo/dashboard/totalCommissionCustomer
GET /bo/giftcards
GET /bo/offers
GET /bo/orders
GET /bo/orders/{orderId}
GET /bo/parameters/{name}
GET /bo/pictures/category-icon/{id}
GET /bo/pictures/customer/{id}
GET /bo/pictures/seller-logo/{id}
GET /bo/pictures/{id}
GET /bo/products
GET /bo/products/items
GET /bo/sellers
GET /bo/sellers/searchBy
GET /bo/sellers/{id}
GET /bo/sellers/{id}/chiffre-affaire
GET /bo/sellers/{id}/solde
GET /bo/sponsorship-code
GET /bo/transactions
GET /bo/transactions/per-hour
GET /bo/transactions/totals
GET /bo/transactions/{personId}
GET /bo/user-account
GET /bo/user-account/active-by-owner/{id}
GET /bo/user-account/block-by-owner/{id}
GET /bo/user-account/owner/{ownerId}
GET /bo/user-account/restore-by-owner/{id}
GET /bo/vouchers/{idPerson}/{type}
GET /bo/wallet/customer-solde/{id}
POST /bo/asset_users/password_reset_email
POST /bo/batch/transaction-timeout
POST /bo/batch/voucher-reminders
POST /bo/companies/account-upgrade
POST /bo/companies/vouchers
POST /bo/giftcards/create-batch
POST /bo/giftcards/{id}/destroy
POST /bo/notifications/broadcast
POST /bo/orders/{orderId}/cancel
POST /bo/vouchers
POST /bo/wallet/cashout
PUT /bo/asset_users/block/{id}
PUT /bo/asset_users/password_reset
PUT /bo/asset_users/password_reset/{id}
PUT /bo/asset_users/removed/{id}
PUT /bo/asset_users/unblock/{id}
PUT /bo/companies/update-subscription-status/{levelId}
PUT /bo/offers/{idOffer}
PUT /bo/orders/{orderId}/status
PUT /bo/parameters/{name}/{newValue}
PUT /bo/products/items/{id}
PUT /bo/products/{id}
PUT /bo/sponsorship-code/{idSponsorshipCode}
PUT /bo/transactions/return/{transactionId}
PUT /bo/user-account/block/{id}
PUT /bo/user-account/unblock/{id}

Found on 2025-12-23 00:28

Severity: info
Fingerprint: 5733ddf49ff49cd151e75e4b936c53ec32c1356e8afd8f49e6e3762c8e22d23c

Public Swagger UI/API detected at path: /v3/api-docs - sample paths:
DELETE /bo/user-account/delete-by-owner/{id}
GET /bo/analytics/categories
GET /bo/analytics/kpis
GET /bo/analytics/revenues
GET /bo/analytics/trends
GET /bo/asset_users
GET /bo/asset_users/select
GET /bo/asset_users/{id}
GET /bo/auth
GET /bo/auth/logout
GET /bo/auth/refresh
GET /bo/batch/executions
GET /bo/batch/history/{batchType}
GET /bo/batch/last-execution/{batchType}
GET /bo/batch/recent-failures
GET /bo/batch/transaction-timeout/count
GET /bo/boxs
GET /bo/category
GET /bo/companies
GET /bo/companies/names
GET /bo/companies/{id}
GET /bo/customers
GET /bo/customers/by-company/{companyId}
GET /bo/customers/searchBy
GET /bo/customers/{id}
GET /bo/dashboard/allAccountCuNb
GET /bo/dashboard/allAccountSeNb
GET /bo/dashboard/allActifAccountCuNb
GET /bo/dashboard/allActifAccountCuNbByLevel
GET /bo/dashboard/allActifAccountSeNb
GET /bo/dashboard/balance
GET /bo/dashboard/companyNumber
GET /bo/dashboard/nbOrders
GET /bo/dashboard/nbVouchers
GET /bo/dashboard/stats
GET /bo/dashboard/totalAmountByLevel
GET /bo/dashboard/totalAmountBySeller
GET /bo/dashboard/totalCommission
GET /bo/dashboard/totalCommissionCustomer
GET /bo/giftcards
GET /bo/offers
GET /bo/orders
GET /bo/orders/{orderId}
GET /bo/parameters/{name}
GET /bo/pictures/category-icon/{id}
GET /bo/pictures/customer/{id}
GET /bo/pictures/seller-logo/{id}
GET /bo/pictures/{id}
GET /bo/products
GET /bo/products/items
GET /bo/sellers
GET /bo/sellers/searchBy
GET /bo/sellers/{id}
GET /bo/sellers/{id}/chiffre-affaire
GET /bo/sellers/{id}/solde
GET /bo/sponsorship-code
GET /bo/transactions
GET /bo/transactions/per-hour
GET /bo/transactions/totals
GET /bo/transactions/{personId}
GET /bo/user-account
GET /bo/user-account/active-by-owner/{id}
GET /bo/user-account/block-by-owner/{id}
GET /bo/user-account/owner/{ownerId}
GET /bo/user-account/restore-by-owner/{id}
GET /bo/vouchers/{idPerson}/{type}
GET /bo/wallet/customer-solde/{id}
POST /bo/asset_users/password_reset_email
POST /bo/batch/transaction-timeout
POST /bo/batch/voucher-reminders
POST /bo/companies/account-upgrade
POST /bo/companies/vouchers
POST /bo/giftcards/create-batch
POST /bo/giftcards/{id}/destroy
POST /bo/orders/{orderId}/cancel
POST /bo/vouchers
POST /bo/wallet/cashout
PUT /bo/asset_users/block/{id}
PUT /bo/asset_users/password_reset
PUT /bo/asset_users/password_reset/{id}
PUT /bo/asset_users/removed/{id}
PUT /bo/asset_users/unblock/{id}
PUT /bo/companies/update-subscription-status/{levelId}
PUT /bo/offers/{idOffer}
PUT /bo/orders/{orderId}/status
PUT /bo/parameters/{name}/{newValue}
PUT /bo/products/items/{id}
PUT /bo/products/{id}
PUT /bo/sponsorship-code/{idSponsorshipCode}
PUT /bo/transactions/return/{transactionId}
PUT /bo/user-account/block/{id}
PUT /bo/user-account/unblock/{id}

Found on 2025-11-30 05:01

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 75.2.60.68
Domain: dashboard-stg.estock.solutions
Port: 80
URL: http://dashboard-stg.estock.solutions

First seen 2025-11-23 18:28
Last seen 2025-12-20 06:45
Open for 26 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c4239b3d84239b3d808c457e038380c8eb89a7f078a3f6047
```
Found 8 files trough .DS_Store spidering:

/favicon.ico
/index.html
/logo.png
/logo.svg
/logo192.png
/logo512.png
/manifest.json
/robots.txt
```
  Found on 2025-12-20 06:45
Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: letter-from-mom-and-dad.noahshaffer.com
Port: 80
URL: http://letter-from-mom-and-dad.noahshaffer.com

First seen 2025-11-12 00:53
Last seen 2025-12-20 05:45
Open for 38 days

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d642dadcf144810473a12a30e185498c74734796d4

GraphQL introspection enabled at /api/graphql
Types: 459 (by kind: ENUM: 66, INPUT_OBJECT: 244, OBJECT: 143, SCALAR: 6)
Operations:
- Query: query_root | fields: Account, Account_aggregate, Account_by_pk, ActionItems, ActionItems_aggregate
- Mutation: mutation_root | fields: delete_Account, delete_Account_by_pk, delete_ActionItems, delete_ActionItems_by_pk, delete_Address
- Subscription: subscription_root | fields: Account, Account_aggregate, Account_by_pk, ActionItems, ActionItems_aggregate
Directives: include, skip (total: 2)

Found on 2025-12-20 05:45

669.7 kBytes

Create report

GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: ru.bossaz-pr-1272.azstage.in
Port: 443
URL: https://ru.bossaz-pr-1272.azstage.in

First seen 2025-12-08 13:12
Last seen 2025-12-16 14:07
Open for 8 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa3edcd2f02dd1cea9285e39de80e5d532613018182
```
GraphQL introspection enabled at /graphql
Types: 125 (by kind: ENUM: 22, INPUT_OBJECT: 20, INTERFACE: 2, OBJECT: 69, SCALAR: 10, UNION: 2)
Operations:
- Query: Query | fields: balanceHistory, bookmarks, categories, company, draftResume
- Mutation: Mutation | fields: createBookmark, createContactEmail, createInvoice, createPayment, createResume
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)
```
  Found on 2025-12-16 14:07
  
  140.1 kBytes
Create report
GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: en.bossaz-pr-1272.azstage.in
Port: 443
URL: https://en.bossaz-pr-1272.azstage.in

First seen 2025-12-08 13:10
Last seen 2025-12-16 14:07
Open for 8 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa3edcd2f02dd1cea9285e39de80e5d532613018182
```
GraphQL introspection enabled at /graphql
Types: 125 (by kind: ENUM: 22, INPUT_OBJECT: 20, INTERFACE: 2, OBJECT: 69, SCALAR: 10, UNION: 2)
Operations:
- Query: Query | fields: balanceHistory, bookmarks, categories, company, draftResume
- Mutation: Mutation | fields: createBookmark, createContactEmail, createInvoice, createPayment, createResume
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)
```
  Found on 2025-12-16 14:07
  
  140.1 kBytes
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 75.2.60.68
Domain: eiden.03080.jp
Port: 443
URL: https://eiden.03080.jp

First seen 2025-10-19 16:12
Last seen 2025-12-14 12:58
Open for 55 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09cccdd54a0ccdd54a0f91c44347e1bf1da2383c523ac705265
```
Found 13 files trough .DS_Store spidering:

/.venv
/.venv/bin
/.venv/include
/.venv/lib
/.venv/lib/python3.12
/.venv/share
/__pycache__
/faces
/models
/projection
/scripts
/test
/uploads
```
  Found on 2025-12-14 12:58
- Severity: low
  Fingerprint: 5f32cf5d6962f09c026392ab026392ab80b3df0bff57e4736ca05d2a7bfbcd2a
```
Found 7 files trough .DS_Store spidering:

/.venv
/.venv/lib
/.venv/lib/python3.12
/faces
/models
/test
/uploads
```
  Found on 2025-10-21 15:31
Create report
GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: bossaz-pr-1276.azstage.in
Port: 80
URL: http://bossaz-pr-1276.azstage.in

First seen 2025-12-11 10:11
Last seen 2025-12-14 08:44
Open for 2 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa3edcd2f02dd1cea9285e39de80e5d532613018182
```
GraphQL introspection enabled at /graphql
Types: 125 (by kind: ENUM: 22, INPUT_OBJECT: 20, INTERFACE: 2, OBJECT: 69, SCALAR: 10, UNION: 2)
Operations:
- Query: Query | fields: balanceHistory, bookmarks, categories, company, draftResume
- Mutation: Mutation | fields: createBookmark, createContactEmail, createInvoice, createPayment, createResume
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)
```
  Found on 2025-12-14 08:44
  
  140.1 kBytes
Create report
GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: ru.bossaz-pr-1276.azstage.in
Port: 80
URL: http://ru.bossaz-pr-1276.azstage.in

First seen 2025-12-11 10:10
Last seen 2025-12-14 08:43
Open for 2 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa3edcd2f02dd1cea9285e39de80e5d532613018182
```
GraphQL introspection enabled at /graphql
Types: 125 (by kind: ENUM: 22, INPUT_OBJECT: 20, INTERFACE: 2, OBJECT: 69, SCALAR: 10, UNION: 2)
Operations:
- Query: Query | fields: balanceHistory, bookmarks, categories, company, draftResume
- Mutation: Mutation | fields: createBookmark, createContactEmail, createInvoice, createPayment, createResume
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)
```
  Found on 2025-12-14 08:43
  
  140.1 kBytes
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 75.2.60.68
Domain: www.creativerwanda.com
Port: 443
URL: https://www.creativerwanda.com

First seen 2025-11-19 20:49
Last seen 2025-12-14 04:24
Open for 24 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c11d3744d11d3744d336cbabb60c24ab434ea3d31c2355039
```
Found 12 files trough .DS_Store spidering:

/assets
/assets/imgs
/assets/imgs/digital-agency-classic
/assets/imgs/logo
/assets/imgs/slider
/assets/imgs/team
/frontend-assets
/frontend-assets/imgs
/frontend-assets/imgs/logo
/images
/images/post
/Paths
```
  Found on 2025-12-14 04:24
- Severity: low
  Fingerprint: 5f32cf5d6962f09cec7f8772ec7f877272a0bbaeafcd1299aa5078ced07547c5
```
Found 11 files trough .DS_Store spidering:

/assets
/assets/imgs
/assets/imgs/digital-agency-classic
/assets/imgs/logo
/assets/imgs/slider
/assets/imgs/team
/frontend-assets
/frontend-assets/imgs
/frontend-assets/imgs/logo
/images
/images/post
```
  Found on 2025-12-12 07:20
Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: api.vantastaging.gg
Port: 443
URL: https://api.vantastaging.gg

First seen 2025-12-03 00:07
Last seen 2025-12-13 09:15
Open for 10 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ed1d490ab921f2bab3413f29ab5e5ac425d390e4

GraphQL introspection enabled at /graphql
Types: 193 (by kind: ENUM: 7, INPUT_OBJECT: 5, OBJECT: 167, SCALAR: 14)
Operations:
- Query: Query | fields: arcadeGame, arcadeGames, associations, availablePlayersPrivateCoachingFreeTrial, availablePrivateCoachingFreeTrial
- Mutation: Mutation | fields: applyDiscountCode, bulkInvitePlayers, cancelEvent, createBreakoutRooms, createCheckIn
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2025-12-13 09:15

268.2 kBytes

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 75.2.60.68
Domain: eiden.03080.jp
Port: 80
URL: http://eiden.03080.jp

First seen 2025-10-19 16:12
Last seen 2025-12-13 02:51
Open for 54 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09cccdd54a0ccdd54a0f91c44347e1bf1da2383c523ac705265
```
Found 13 files trough .DS_Store spidering:

/.venv
/.venv/bin
/.venv/include
/.venv/lib
/.venv/lib/python3.12
/.venv/share
/__pycache__
/faces
/models
/projection
/scripts
/test
/uploads
```
  Found on 2025-12-13 02:51
- Severity: low
  Fingerprint: 5f32cf5d6962f09c026392ab026392ab80b3df0bff57e4736ca05d2a7bfbcd2a
```
Found 7 files trough .DS_Store spidering:

/.venv
/.venv/lib
/.venv/lib/python3.12
/faces
/models
/test
/uploads
```
  Found on 2025-10-21 13:01
Create report
GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: model-api.credplatform.com
Port: 443
URL: https://model-api.credplatform.com

First seen 2025-10-16 23:09
Last seen 2025-12-10 16:40
Open for 54 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa3
```
GraphQL introspection enabled at /graphql
```
  Found on 2025-12-10 16:40
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa3ebd99a6eb5f01e9e98d8590f39059f42e073e0c0
```
GraphQL introspection enabled at /graphql
Types: 637 (by kind: ENUM: 141, INPUT_OBJECT: 140, OBJECT: 340, SCALAR: 15, UNION: 1)
Operations:
- Query: Query | fields: agenciesConnection, agencyById, audienceCountryConnection, companyMetricChart, errorCodes
- Mutation: Mutation | fields: extractTextFromMedia, mockMutation
Directives: extends, external, federation__inaccessible, federation__override, federation__tag, key, link, provides, requires, shareable (total: 16)
```
  Found on 2025-11-10 16:36
  
  1.2 MBytes
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 75.2.60.68
Domain: api.vya.care
Port: 443
URL: https://api.vya.care

First seen 2025-12-09 01:01
- Severity: info
  Fingerprint: 5733ddf49ff49cd151e75e4ba7b746818cdd1680fde9e20986f4e957a7865b97
```
Public Swagger UI/API detected at path: /v3/api-docs - sample paths:
GET /api/ancillaryCost/{id}
GET /api/ancillaryCost/{orgId}/org
GET /api/organization
GET /api/v1/organization/serviceTemplates/{id}
GET /api/v1/organization/{organizationId}/serviceTemplates
GET /api/v1/organization/{organizationId}/services
GET /api/v1/patient
GET /api/v1/patient/{organizationId}/organization
GET /api/v1/patient/{uuid}
GET /api/v1/serviceTemplates/{orgid}
GET /api/v1/serviceTemplates/{uuid}/id
GET /api/v1/services/{serviceId}
POST /api/ancillaryCost
POST /api/v1/organization/serviceTemplates
POST /api/v1/organization/services
POST /api/v1/patient/{organizationId}/upload
POST /api/v1/serviceTemplates
POST /api/webhook
```
  Found on 2025-12-09 01:01
Create report
GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: prod.vibely.com
Port: 443
URL: https://prod.vibely.com

First seen 2025-12-08 05:51
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa3
```
GraphQL introspection enabled at /graphql
```
  Found on 2025-12-08 05:51
Create report
GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: ru.bossaz-pr-1269.azstage.in
Port: 80
URL: http://ru.bossaz-pr-1269.azstage.in

First seen 2025-12-04 14:46
Last seen 2025-12-08 01:51
Open for 3 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa3edcd2f02dd1cea9285e39de80e5d532613018182
```
GraphQL introspection enabled at /graphql
Types: 125 (by kind: ENUM: 22, INPUT_OBJECT: 20, INTERFACE: 2, OBJECT: 69, SCALAR: 10, UNION: 2)
Operations:
- Query: Query | fields: balanceHistory, bookmarks, categories, company, draftResume
- Mutation: Mutation | fields: createBookmark, createContactEmail, createInvoice, createPayment, createResume
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)
```
  Found on 2025-12-08 01:51
  
  140.1 kBytes
Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: bossaz-pr-1268.azstage.in
Port: 80
URL: http://bossaz-pr-1268.azstage.in

First seen 2025-12-04 11:13

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3edcd2f02dd1cea9285e39de80e5d532613018182

GraphQL introspection enabled at /graphql
Types: 125 (by kind: ENUM: 22, INPUT_OBJECT: 20, INTERFACE: 2, OBJECT: 69, SCALAR: 10, UNION: 2)
Operations:
- Query: Query | fields: balanceHistory, bookmarks, categories, company, draftResume
- Mutation: Mutation | fields: createBookmark, createContactEmail, createInvoice, createPayment, createResume
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2025-12-04 11:13

140.1 kBytes

Create report

GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: bossaz-pr-1253.azstage.in
Port: 80
URL: http://bossaz-pr-1253.azstage.in

First seen 2025-11-06 12:14
Last seen 2025-12-01 17:00
Open for 25 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa3edcd2f02dd1cea9285e39de80e5d532613018182
```
GraphQL introspection enabled at /graphql
Types: 125 (by kind: ENUM: 22, INPUT_OBJECT: 20, INTERFACE: 2, OBJECT: 69, SCALAR: 10, UNION: 2)
Operations:
- Query: Query | fields: balanceHistory, bookmarks, categories, company, draftResume
- Mutation: Mutation | fields: createBookmark, createContactEmail, createInvoice, createPayment, createResume
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)
```
  Found on 2025-12-01 17:00
  
  139.8 kBytes
Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: commercial-api.credplatform.com
Port: 80
URL: http://commercial-api.credplatform.com

First seen 2025-10-26 00:06
Last seen 2025-12-01 01:23
Open for 36 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3bf99de9c1b8656a09272584100645f438dab287c

GraphQL introspection enabled at /graphql
Types: 800 (by kind: ENUM: 163, INPUT_OBJECT: 260, OBJECT: 360, SCALAR: 14, UNION: 3)
Operations:
- Query: Query | fields: accountById, accountConnection, accountMatchingStats, customerById, customerConnection
- Mutation: Mutation | fields: createAccount, deleteAccount, mergeAccounts, updateAccount, updateCustomer
- Subscription: Subscription | fields: campaignUpdated, finishAddingListItems, listItemAdded, listItemRemoved, startAddingListItems
Directives: extends, external, federation__inaccessible, federation__override, federation__tag, key, link, provides, requires, shareable (total: 17)

Found on 2025-12-01 01:23

1.4 MBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa378b1fa93375480d19945159a39007b8a62898f6b

GraphQL introspection enabled at /graphql
Types: 797 (by kind: ENUM: 162, INPUT_OBJECT: 258, OBJECT: 360, SCALAR: 14, UNION: 3)
Operations:
- Query: Query | fields: accountById, accountConnection, accountMatchingStats, customerById, customerConnection
- Mutation: Mutation | fields: createAccount, deleteAccount, mergeAccounts, updateAccount, updateCustomer
- Subscription: Subscription | fields: campaignUpdated, finishAddingListItems, listItemAdded, listItemRemoved, startAddingListItems
Directives: extends, external, federation__inaccessible, federation__override, federation__tag, key, link, provides, requires, shareable (total: 17)

Found on 2025-11-16 12:28

1.4 MBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa32441e174086a9d787dff3529d0bb7edb47539294

GraphQL introspection enabled at /graphql
Types: 773 (by kind: ENUM: 157, INPUT_OBJECT: 252, OBJECT: 347, SCALAR: 14, UNION: 3)
Operations:
- Query: Query | fields: accountById, accountConnection, accountMatchingStats, customerById, customerConnection
- Mutation: Mutation | fields: createAccount, deleteAccount, mergeAccounts, updateAccount, updateCustomer
- Subscription: Subscription | fields: campaignUpdated, finishAddingListItems, listItemAdded, listItemRemoved, startAddingListItems
Directives: extends, external, federation__inaccessible, federation__override, federation__tag, key, link, provides, requires, shareable (total: 17)

Found on 2025-11-10 19:58

1.4 MBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3efb8ccc82a15916c85fdd545bca4df2fc466d7f0

GraphQL introspection enabled at /graphql
Types: 761 (by kind: ENUM: 154, INPUT_OBJECT: 247, OBJECT: 343, SCALAR: 14, UNION: 3)
Operations:
- Query: Query | fields: accountById, accountConnection, accountMatchingStats, customerById, customerConnection
- Mutation: Mutation | fields: createAccount, deleteAccount, mergeAccounts, updateAccount, updateCustomer
- Subscription: Subscription | fields: campaignUpdated, finishAddingListItems, listItemAdded, listItemRemoved, startAddingListItems
Directives: extends, external, federation__inaccessible, federation__override, federation__tag, key, link, provides, requires, shareable (total: 17)

Found on 2025-10-26 00:06

1.3 MBytes

Create report

GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: bossaz-pr-1253.azstage.in
Port: 443
URL: https://bossaz-pr-1253.azstage.in

First seen 2025-11-06 12:14
Last seen 2025-12-01 00:38
Open for 24 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa3edcd2f02dd1cea9285e39de80e5d532613018182
```
GraphQL introspection enabled at /graphql
Types: 125 (by kind: ENUM: 22, INPUT_OBJECT: 20, INTERFACE: 2, OBJECT: 69, SCALAR: 10, UNION: 2)
Operations:
- Query: Query | fields: balanceHistory, bookmarks, categories, company, draftResume
- Mutation: Mutation | fields: createBookmark, createContactEmail, createInvoice, createPayment, createResume
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)
```
  Found on 2025-12-01 00:38
  
  139.8 kBytes
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 75.2.60.68
Domain: insight-staging.locomote.com
Port: 80
URL: http://insight-staging.locomote.com

First seen 2025-11-03 00:18
Last seen 2025-11-30 21:28
Open for 27 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1b885ff43a6803424777154098186713ec9a2b7b3b097f7f1
```
Public Swagger UI/API detected at path: /swagger.json - sample paths:
GET /v1/agency_branches
GET /v1/agency_branches/find
GET /v1/agency_branches/{uuid}
GET /v1/identities
GET /v1/identities/{uuid}/itineraries
GET /v1/identities/{uuid}/travellers
GET /v1/identities/{uuid}/trips
GET /v1/identity/info
GET /v1/identity/oauth2/auth
GET /v1/itineraries
GET /v1/itineraries/{compound_key}
GET /v1/trip/{uuid}
GET /v1/trip/{uuid}/itinerary
POST /v1/agency_branches/sync
POST /v1/companies/sync
POST /v1/identities/auth
POST /v1/identity/create_session
POST /v1/identity/oauth2/token
```
  Found on 2025-11-30 21:28
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 75.2.60.68
Domain: www.mugandcup.cafe
Port: 443
URL: https://www.mugandcup.cafe

First seen 2025-07-24 09:07
Last seen 2025-11-29 13:29
Open for 128 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c7cf176427cf176422b63f4825bdb4d635bdb4d635bdb4d63
```
Found 2 files trough .DS_Store spidering:

/css
/images
```
  Found on 2025-11-29 13:29
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 75.2.60.68
Domain: staging-api.buyersight.io
Port: 443
URL: https://staging-api.buyersight.io

First seen 2025-11-23 03:32
Last seen 2025-11-29 01:24
Open for 5 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109
```
Public Swagger UI/API detected at path: /api-docs/swagger.json
```
  Found on 2025-11-29 01:24
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 75.2.60.68
Domain: api.diary-sample.1-system-group.jp
Port: 80
URL: http://api.diary-sample.1-system-group.jp

First seen 2025-11-29 01:15
Last seen 2025-11-29 01:15
- Severity: info
  Fingerprint: 5733ddf49ff49cd1aad03549d143512f118782443df75a9fc26e82a8c26e82a8
```
Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
GET /api/v1/Counts
GET /api/v1/Diary/{id}
GET /api/v1/Lists/{page}
POST /api/v1/Login
```
  Found on 2025-11-29 01:15
Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: ru.bossaz-pr-1261.azstage.in
Port: 80
URL: http://ru.bossaz-pr-1261.azstage.in

First seen 2025-11-20 08:53

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3edcd2f02dd1cea9285e39de80e5d532613018182

GraphQL introspection enabled at /graphql
Types: 125 (by kind: ENUM: 22, INPUT_OBJECT: 20, INTERFACE: 2, OBJECT: 69, SCALAR: 10, UNION: 2)
Operations:
- Query: Query | fields: balanceHistory, bookmarks, categories, company, draftResume
- Mutation: Mutation | fields: createBookmark, createContactEmail, createInvoice, createPayment, createResume
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2025-11-20 08:53

140.0 kBytes

Create report

GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: en.bossaz-pr-1254.azstage.in
Port: 443
URL: https://en.bossaz-pr-1254.azstage.in

First seen 2025-11-10 09:16
Last seen 2025-11-16 09:37
Open for 6 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa3edcd2f02dd1cea9285e39de80e5d532613018182
```
GraphQL introspection enabled at /graphql
Types: 125 (by kind: ENUM: 22, INPUT_OBJECT: 20, INTERFACE: 2, OBJECT: 69, SCALAR: 10, UNION: 2)
Operations:
- Query: Query | fields: balanceHistory, bookmarks, categories, company, draftResume
- Mutation: Mutation | fields: createBookmark, createContactEmail, createInvoice, createPayment, createResume
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)
```
  Found on 2025-11-16 09:37
  
  139.8 kBytes
Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: en.bossaz-pr-1214.azstage.in
Port: 443
URL: https://en.bossaz-pr-1214.azstage.in

First seen 2025-10-21 00:20
Last seen 2025-11-08 21:08
Open for 18 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa31427cad824e6213cdcc9d512f3906d81f67254b0

GraphQL introspection enabled at /graphql
Types: 113 (by kind: ENUM: 20, INPUT_OBJECT: 17, INTERFACE: 2, OBJECT: 62, SCALAR: 10, UNION: 2)
Operations:
- Query: Query | fields: bookmarks, categories, company, draftResume, draftVacancy
- Mutation: Mutation | fields: adContact, createBookmark, createInvoice, createPayment, createResume
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 3
bookmarks (args: optional/default) : totalCount=0
resumes (args: optional/default) : totalCount=0
vacancies (args: optional/default) : totalCount=0

Found on 2025-11-08 21:08

127.6 kBytes 3 rows

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 75.2.60.68
Domain: en.bossaz-pr-1214.azstage.in
Port: 80
URL: http://en.bossaz-pr-1214.azstage.in

First seen 2025-10-21 00:20
Last seen 2025-11-07 06:27
Open for 17 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa31427cad824e6213cdcc9d512f3906d81f67254b0

GraphQL introspection enabled at /graphql
Types: 113 (by kind: ENUM: 20, INPUT_OBJECT: 17, INTERFACE: 2, OBJECT: 62, SCALAR: 10, UNION: 2)
Operations:
- Query: Query | fields: bookmarks, categories, company, draftResume, draftVacancy
- Mutation: Mutation | fields: adContact, createBookmark, createInvoice, createPayment, createResume
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 3
bookmarks (args: optional/default) : totalCount=0
resumes (args: optional/default) : totalCount=0
vacancies (args: optional/default) : totalCount=0

Found on 2025-11-07 06:27

127.6 kBytes 3 rows

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 75.2.60.68
Domain: ngcl.neutralgrounds.online
Port: 443
URL: https://ngcl.neutralgrounds.online

First seen 2025-05-28 00:26
Last seen 2025-10-19 15:18
Open for 144 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c026392ab026392aba734d8a76027ae8b8223595c9df9f12f
```
Found 7 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/favicon-16x16.png
```
  Found on 2025-10-19 15:18
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 75.2.60.68
Domain: bookify.events
Port: 443
URL: https://bookify.events

First seen 2025-09-23 03:23
Last seen 2025-09-25 03:06
Open for 1 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9df5de3f47f5de3f47f5de3f47f5de3f47
```
Found 1 files trough .DS_Store spidering:

/favicon.png
```
  Found on 2025-09-25 03:06
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 75.2.60.68
Domain: bookify.events
Port: 80
URL: http://bookify.events

First seen 2025-09-23 03:23
Last seen 2025-09-24 21:49
Open for 1 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9df5de3f47f5de3f47f5de3f47f5de3f47
```
Found 1 files trough .DS_Store spidering:

/favicon.png
```
  Found on 2025-09-24 21:49
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 75.2.60.68
Domain: www.oarlin.com
Port: 443
URL: https://www.oarlin.com

First seen 2025-08-13 00:38
Last seen 2025-09-06 18:01
Open for 24 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c2a439cf82a439cf8ebf50e825c0992641410c3311003a773
```
Found 31 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/cryptocoins.ttf
/cryptocoins.woff
/cryptocoins.woff2
/favicon.ico
/flat
/fonts
/futurico
/images
/images/avatar
/images/dark-layout.png
/images/light-layout.png
/images/ltr-layout.png
/images/preloaders
/images/preloaders/1.gif
/images/preloaders/2.gif
/images/preloaders/OARLIN-GIF.gif
/images/preloaders/OARLIN-GIF.mp4
/images/preloaders/oarlin-logo.gif
/images/preloaders/Thumbs.db
/images/rtl-layout.png
/line
/minimal
/polaris
/robots.txt
/square
```
  Found on 2025-09-06 18:01
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 75.2.60.68
Domain: staging.kg.artsdata.ca
Port: 443
URL: https://staging.kg.artsdata.ca

First seen 2025-07-23 19:11
Last seen 2025-08-28 15:43
Open for 35 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9db7f4c636b7f4c636b7f4c636b7f4c636
```
Found 1 files trough .DS_Store spidering:

/images
```
  Found on 2025-08-28 15:43
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 75.2.60.68
Domain: post.lexandria-staging.org
Port: 443
URL: https://post.lexandria-staging.org

First seen 2025-08-14 18:37
Last seen 2025-08-27 06:48
Open for 12 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c7cf176427cf17642bcfccc19ecde6a83ecde6a83ecde6a83
```
Found 2 files trough .DS_Store spidering:

/poptential
/poptential/poptential-logo-backup.png
```
  Found on 2025-08-27 06:48
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 75.2.60.68
Domain: yafo.lexandria-staging.org
Port: 80
URL: http://yafo.lexandria-staging.org

First seen 2025-08-14 18:35
Last seen 2025-08-27 05:32
Open for 12 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c7cf176427cf17642bcfccc19ecde6a83ecde6a83ecde6a83
```
Found 2 files trough .DS_Store spidering:

/poptential
/poptential/poptential-logo-backup.png
```
  Found on 2025-08-27 05:32
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 75.2.60.68
Domain: certell.lexandria-staging.org
Port: 443
URL: https://certell.lexandria-staging.org

First seen 2025-08-14 18:41
Last seen 2025-08-27 02:19
Open for 12 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c7cf176427cf17642bcfccc19ecde6a83ecde6a83ecde6a83
```
Found 2 files trough .DS_Store spidering:

/poptential
/poptential/poptential-logo-backup.png
```
  Found on 2025-08-27 02:19
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 75.2.60.68
Domain: post.lexandria-staging.org
Port: 80
URL: http://post.lexandria-staging.org

First seen 2025-08-14 18:37
Last seen 2025-08-26 15:17
Open for 11 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c7cf176427cf17642bcfccc19ecde6a83ecde6a83ecde6a83
```
Found 2 files trough .DS_Store spidering:

/poptential
/poptential/poptential-logo-backup.png
```
  Found on 2025-08-26 15:17
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 75.2.60.68
Domain: ilapi.lexandria-staging.org
Port: 443
URL: https://ilapi.lexandria-staging.org

First seen 2025-08-14 18:35
Last seen 2025-08-26 15:17
Open for 11 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c7cf176427cf17642bcfccc19ecde6a83ecde6a83ecde6a83
```
Found 2 files trough .DS_Store spidering:

/poptential
/poptential/poptential-logo-backup.png
```
  Found on 2025-08-26 15:17
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 75.2.60.68
Domain: hjc-ppf.lexandria-staging.org
Port: 443
URL: https://hjc-ppf.lexandria-staging.org

First seen 2025-08-14 18:39
Last seen 2025-08-26 15:01
Open for 11 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c7cf176427cf17642bcfccc19ecde6a83ecde6a83ecde6a83
```
Found 2 files trough .DS_Store spidering:

/poptential
/poptential/poptential-logo-backup.png
```
  Found on 2025-08-26 15:01
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 75.2.60.68
Domain: wfi.lexandria-staging.org
Port: 443
URL: https://wfi.lexandria-staging.org

First seen 2025-08-14 18:34
Last seen 2025-08-26 15:01
Open for 11 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c7cf176427cf17642bcfccc19ecde6a83ecde6a83ecde6a83
```
Found 2 files trough .DS_Store spidering:

/poptential
/poptential/poptential-logo-backup.png
```
  Found on 2025-08-26 15:01
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 75.2.60.68
Domain: sandbox.lexandria-staging.org
Port: 443
URL: https://sandbox.lexandria-staging.org

First seen 2025-08-14 18:32
Last seen 2025-08-26 15:01
Open for 11 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c7cf176427cf17642bcfccc19ecde6a83ecde6a83ecde6a83
```
Found 2 files trough .DS_Store spidering:

/poptential
/poptential/poptential-logo-backup.png
```
  Found on 2025-08-26 15:01
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 75.2.60.68
Domain: latam.lexandria-staging.org
Port: 443
URL: https://latam.lexandria-staging.org

First seen 2025-08-14 18:41
Last seen 2025-08-26 04:07
Open for 11 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c7cf176427cf17642bcfccc19ecde6a83ecde6a83ecde6a83
```
Found 2 files trough .DS_Store spidering:

/poptential
/poptential/poptential-logo-backup.png
```
  Found on 2025-08-26 04:07
Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 75.2.60.68
Domain: analyzer.stunning.co
Port: 443
URL: https://analyzer.stunning.co

First seen 2024-11-12 00:33
Last seen 2025-08-14 08:15
Open for 275 days

Severity: high
Fingerprint: 5f32cf5d6962f09c87f05b7087f05b70b2710a7ac6a6137c020ed109c66d98b2

Found 26 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/assets/img
/assets/img/icons
/assets/img/icons/social
/assets/img/screenshots
/assets/img/screenshots/desktop
/css
/favicon.ico
/fonts
/fonts/chillax
/hover-animation.gif
/packs
/packs/js
/packs/manifest.json
/packs/manifest.json.br
/packs/manifest.json.gz
/robots.txt
/small-blue-stunning-logo.png
/stunning-header-white.svg
/stunning-projector.svg
/stunning-robot-header.svg

Found on 2025-08-14 08:15

Severity: low
Fingerprint: 5f32cf5d6962f09c9e04c3bc9e04c3bc73fa8e0695b238107e95a455d7add9a3

Found 22 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/assets/img
/assets/img/icons
/assets/img/icons/social
/assets/img/screenshots
/assets/img/screenshots/desktop
/css
/favicon.ico
/fonts
/fonts/chillax
/hover-animation.gif
/packs
/robots.txt
/small-blue-stunning-logo.png
/stunning-header-white.svg
/stunning-projector.svg
/stunning-robot-header.svg

Found on 2025-06-16 06:43

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 75.2.60.68
Domain: www.fractal-fitness.com
Port: 80
URL: http://www.fractal-fitness.com

First seen 2025-03-14 01:20
Last seen 2025-06-22 11:49
Open for 100 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c3c1fc5e93c1fc5e975a091b78cff885f73211f985e64002a
```
Found 5 files trough .DS_Store spidering:

/assets
/css
/images
/includes
/js
```
  Found on 2025-06-22 11:49
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 75.2.60.68
Domain: www.fractal-fitness.com
Port: 443
URL: https://www.fractal-fitness.com

First seen 2025-03-14 01:20
Last seen 2025-06-22 11:49
Open for 100 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c3c1fc5e93c1fc5e975a091b78cff885f73211f985e64002a
```
Found 5 files trough .DS_Store spidering:

/assets
/css
/images
/includes
/js
```
  Found on 2025-06-22 11:49
Create report

Finds vulnerable Vite development environment

ViteJS development environment found and vulnerable to CVE-2025-30208

IP: 75.2.60.68
Domain: sauron.industries
Port: 80
URL: http://sauron.industries

First seen 2025-05-13 00:17
Last seen 2025-06-02 19:44
Open for 20 days

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e0922452eac0d68aa9aa7a7d75be755

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.8.1 node/v20.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=59933
HOME=/app
npm_package_json=/app/package.json
npm_package_engines_node=20.x
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.8.1
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=sauron-app
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite
npm_package_version=0.0.0
npm_lifecycle_event=start
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=start
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-06-02 19:44

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e0922452eac0d68aa9aa7a76bbedfce

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.8.1 node/v20.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=8291
HOME=/app
npm_package_json=/app/package.json
npm_package_engines_node=20.x
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.8.1
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=sauron-app
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite
npm_package_version=0.0.0
npm_lifecycle_event=start
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=start
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-06-01 12:59

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e0922452eac0d68aa9aa7a79bec5dd5

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.8.1 node/v20.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=13290
HOME=/app
npm_package_json=/app/package.json
npm_package_engines_node=20.x
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.8.1
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=sauron-app
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite
npm_package_version=0.0.0
npm_lifecycle_event=start
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=start
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-05-30 12:31

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e0922452eac0d68aa9aa7a7af836a8d

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.8.1 node/v20.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=19164
HOME=/app
npm_package_json=/app/package.json
npm_package_engines_node=20.x
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.8.1
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=sauron-app
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite
npm_package_version=0.0.0
npm_lifecycle_event=start
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=start
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-05-28 18:58

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e0922452eac0d68aa9aa7a7991ce155

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.8.1 node/v20.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=6340
HOME=/app
npm_package_json=/app/package.json
npm_package_engines_node=20.x
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.8.1
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=sauron-app
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite
npm_package_version=0.0.0
npm_lifecycle_event=start
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=start
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-05-26 20:19

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e0922452eac0d68aa9aa7a7c33a864b

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.8.1 node/v20.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=42229
HOME=/app
npm_package_json=/app/package.json
npm_package_engines_node=20.x
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.8.1
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=sauron-app
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite
npm_package_version=0.0.0
npm_lifecycle_event=start
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=start
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-05-24 14:31

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e0922452eac0d68aa9aa7a76e1917d2

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.8.1 node/v20.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=28499
HOME=/app
npm_package_json=/app/package.json
npm_package_engines_node=20.x
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.8.1
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=sauron-app
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite
npm_package_version=0.0.0
npm_lifecycle_event=start
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=start
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-05-22 13:25

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e0922452eac0d68aa9aa7a70cae2afc

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.8.1 node/v20.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=4367
HOME=/app
npm_package_json=/app/package.json
npm_package_engines_node=20.x
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.8.1
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=sauron-app
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite
npm_package_version=0.0.0
npm_lifecycle_event=start
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=start
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-05-20 15:32

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e0922452eac0d68aa9aa7a7020252bf

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.8.1 node/v20.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=12251
HOME=/app
npm_package_json=/app/package.json
npm_package_engines_node=20.x
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.8.1
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=sauron-app
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite
npm_package_version=0.0.0
npm_lifecycle_event=start
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=start
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-05-18 18:15

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e0922452eac0d68aa9aa7a7f8bb3f7b

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.8.1 node/v20.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=40586
HOME=/app
npm_package_json=/app/package.json
npm_package_engines_node=20.x
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.8.1
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=sauron-app
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite
npm_package_version=0.0.0
npm_lifecycle_event=start
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=start
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-05-16 14:44

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e0922452eac0d68aa9aa7a74c3cf2e0

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.8.1 node/v20.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=5830
HOME=/app
npm_package_json=/app/package.json
npm_package_engines_node=20.x
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.8.1
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=sauron-app
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite
npm_package_version=0.0.0
npm_lifecycle_event=start
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=start
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-05-13 00:17

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 75.2.60.68
Domain: www.navyscredit.com
Port: 80
URL: http://www.navyscredit.com

First seen 2025-01-30 17:40
Last seen 2025-04-30 08:48
Open for 89 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09cdc57c57adc57c57adf0e4e1624ce5f9db25f37ff0dc3ca38
```
Found 19 files trough .DS_Store spidering:

/assets
/assets/background
/assets/bg-image
/assets/blog
/assets/client
/assets/clients
/assets/font-awesome
/assets/gallery
/assets/icons
/assets/main-slider
/assets/portfolio
/assets/prettyPhoto
/assets/product
/assets/resource
/assets/services
/assets/slides
/assets/team-member
/assets/testimonial
/packs
```
  Found on 2025-04-30 08:48
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 75.2.60.68
Domain: sistema-juntosesporteelazer.institutocarioca.org.br
Port: 80
URL: http://sistema-juntosesporteelazer.institutocarioca.org.br

First seen 2025-02-17 19:31
Last seen 2025-03-09 05:21
Open for 19 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c0215adfc0215adfc0363d38caf1e6e4b6d09f0917dcb21f6
```
Found 4 files trough .DS_Store spidering:

/assets
/modelo_de_tabela_para_importar_alunos.xlsx
/system
/uploads
```
  Found on 2025-03-09 05:21
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 75.2.60.68
Domain: grade.promocaosocialintegrada.com.br
Port: 443
URL: https://grade.promocaosocialintegrada.com.br

First seen 2025-02-24 23:51
Last seen 2025-03-09 04:09
Open for 12 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c0215adfc0215adfc0363d38caf1e6e4b6d09f0917dcb21f6
```
Found 4 files trough .DS_Store spidering:

/assets
/modelo_de_tabela_para_importar_alunos.xlsx
/system
/uploads
```
  Found on 2025-03-09 04:09
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 75.2.60.68
Domain: consulta.ambientejovem.com.br
Port: 80
URL: http://consulta.ambientejovem.com.br

First seen 2025-02-11 21:50
Last seen 2025-03-08 17:29
Open for 24 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c0215adfc0215adfc0363d38caf1e6e4b6d09f0917dcb21f6
```
Found 4 files trough .DS_Store spidering:

/assets
/modelo_de_tabela_para_importar_alunos.xlsx
/system
/uploads
```
  Found on 2025-03-08 17:29
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 75.2.60.68
Domain: sistema-juntospelacidadania.institutorealizandoofuturo.org.br
Port: 80
URL: http://sistema-juntospelacidadania.institutorealizandoofuturo.org.br

First seen 2025-02-17 20:52
Last seen 2025-03-08 06:22
Open for 18 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c0215adfc0215adfc0363d38caf1e6e4b6d09f0917dcb21f6
```
Found 4 files trough .DS_Store spidering:

/assets
/modelo_de_tabela_para_importar_alunos.xlsx
/system
/uploads
```
  Found on 2025-03-08 06:22
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 75.2.60.68
Domain: ecoarnorio.institutocarioca.org.br
Port: 80
URL: http://ecoarnorio.institutocarioca.org.br

First seen 2024-12-11 00:05
Last seen 2025-02-09 00:17
Open for 60 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c0215adfc0215adfc0363d38caf1e6e4b6d09f0917dcb21f6
```
Found 4 files trough .DS_Store spidering:

/assets
/modelo_de_tabela_para_importar_alunos.xlsx
/system
/uploads
```
  Found on 2025-02-09 00:17
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 75.2.60.68
Domain: www.fishingram.net
Port: 443
URL: https://www.fishingram.net

First seen 2024-11-30 00:14
Last seen 2025-01-26 04:52
Open for 57 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c7cf176427cf176423cd9ee9fd3539643d3539643d3539643
```
Found 2 files trough .DS_Store spidering:

/icon_white.png
/icon_white.svg
```
  Found on 2025-01-26 04:52
Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 35.71.179.82
Domain: test.telepeeps.com
Port: 443
URL: https://test.telepeeps.com

First seen 2024-12-21 07:30

Severity: medium
Fingerprint: 5f32cf5d6962f09c3005b7223005b722f48aa1f03da91134ed42b7ec58bf617b

Found 77 files trough .DS_Store spidering:

/404.html
/admin
/admin/img
/android-icon-144x144.png
/android-icon-192x192.png
/android-icon-36x36.png
/android-icon-48x48.png
/android-icon-72x72.png
/android-icon-96x96.png
/apple-icon-114x114.png
/apple-icon-120x120.png
/apple-icon-144x144.png
/apple-icon-152x152.png
/apple-icon-180x180.png
/apple-icon-57x57.png
/apple-icon-60x60.png
/apple-icon-72x72.png
/apple-icon-76x76.png
/apple-icon-precomposed.png
/apple-icon.png
/assets
/assets/css
/assets/images
/assets/images/deco
/assets/images/dummyFaces
/assets/images/history
/assets/images/icons
/assets/images/icons/footer-logo-family.svg
/assets/images/icons/footer-logo-hpcnt.svg
/assets/images/icons/icArrowRight.png
/assets/images/icons/icChevronRight.svg
/assets/images/icons/icEdit.svg
/assets/images/icons/icEditProfileLanguages.svg
/assets/images/icons/icEditProfileNickname.svg
/assets/images/icons/icEditWhite.svg
/assets/images/icons/icEffectFill.svg
/assets/images/icons/icExitWhite.svg
/assets/images/icons/icFriendAddLarge.svg
/assets/images/icons/icGenderFEMALE.svg
/assets/images/icons/icGenderMALE.svg
/assets/images/icons/icMoreWhite.svg
/assets/images/icons/icPersonWhite.svg
/assets/images/icons/icQuestionMark.svg
/assets/images/icons/icSend.svg
/assets/images/icons/icVideo-black.svg
/assets/images/icons/icVideo-white.svg
/assets/images/icons/imgGemSquare.png
/assets/images/icons/social-instagram.svg
/assets/images/icons/social-youtube.svg
/assets/images/live
/assets/images/logo
/assets/images/match
/assets/images/match/cardImage
/assets/images/match/icALL.png
/assets/images/match/icLocation.svg
/assets/images/match/icMinimize.svg
/assets/images/match/icMobileLayoutHALF.svg
/assets/images/match/imgEarth.webp
/assets/images/match/Leftside_first_frame.png
/assets/images/profile
/assets/img
/assets/js
/assets/svg
/browserconfig.xml
/contacts.html
/favicon-16x16.png
/favicon-32x32.png
/favicon-96x96.png
/favicon.ico
/index.html
/manifest.json
/ms-icon-144x144.png
/ms-icon-150x150.png
/ms-icon-310x310.png
/ms-icon-70x70.png
/rules.html
/terms.html

Found on 2024-12-21 07:30

Severity: medium
Fingerprint: 5f32cf5d6962f09c1e3ea8c61e3ea8c68ab99874cd85bd389afd8e8860a15c20

Found 86 files trough .DS_Store spidering:

/404.html
/admin
/admin/img
/android-icon-144x144.png
/android-icon-192x192.png
/android-icon-36x36.png
/android-icon-48x48.png
/android-icon-72x72.png
/android-icon-96x96.png
/apple-icon-114x114.png
/apple-icon-120x120.png
/apple-icon-144x144.png
/apple-icon-152x152.png
/apple-icon-180x180.png
/apple-icon-57x57.png
/apple-icon-60x60.png
/apple-icon-72x72.png
/apple-icon-76x76.png
/apple-icon-precomposed.png
/apple-icon.png
/assets
/assets/css
/assets/images
/assets/images/deco
/assets/images/dummyFaces
/assets/images/history
/assets/images/icons
/assets/images/icons/footer-logo-family.svg
/assets/images/icons/footer-logo-hpcnt.svg
/assets/images/icons/icArrowRight.png
/assets/images/icons/icChevronRight.svg
/assets/images/icons/icEdit.svg
/assets/images/icons/icEditProfileLanguages.svg
/assets/images/icons/icEditProfileNickname.svg
/assets/images/icons/icEditWhite.svg
/assets/images/icons/icEffectFill.svg
/assets/images/icons/icExitWhite.svg
/assets/images/icons/icFriendAddLarge.svg
/assets/images/icons/icGenderFEMALE.svg
/assets/images/icons/icGenderMALE.svg
/assets/images/icons/icMoreWhite.svg
/assets/images/icons/icPersonWhite.svg
/assets/images/icons/icQuestionMark.svg
/assets/images/icons/icSend.svg
/assets/images/icons/icVideo-black.svg
/assets/images/icons/icVideo-white.svg
/assets/images/icons/imgGemSquare.png
/assets/images/icons/social-instagram.svg
/assets/images/icons/social-youtube.svg
/assets/images/live
/assets/images/logo
/assets/images/match
/assets/images/match/cardImage
/assets/images/match/icALL.png
/assets/images/match/icLocation.svg
/assets/images/match/icMinimize.svg
/assets/images/match/icMobileLayoutHALF.svg
/assets/images/match/imgEarth.webp
/assets/images/match/Leftside_first_frame.png
/assets/images/profile
/assets/img
/assets/img/bg.jpg
/assets/img/bg2.png
/assets/img/icon.png
/assets/img/iconOmegly.png
/assets/img/logo.png
/assets/img/logo.svg
/assets/img/omegle-logo.svg
/assets/img/preloader.svg
/assets/img/signal.png
/assets/js
/assets/svg
/browserconfig.xml
/contacts.html
/favicon-16x16.png
/favicon-32x32.png
/favicon-96x96.png
/favicon.ico
/index.html
/manifest.json
/ms-icon-144x144.png
/ms-icon-150x150.png
/ms-icon-310x310.png
/ms-icon-70x70.png
/rules.html
/terms.html

Found on 2024-12-21 07:30

Create report

Open service 75.2.60.68:443 · ga.rethada.ms

2026-01-13 01:15

HTTP/1.1 200 OK
Cache-Control: max-age=0, private, must-revalidate
Content-Length: 29680
Content-Type: text/html; charset=utf-8
Date: Tue, 13 Jan 2026 01:15:28 GMT
Etag: W/"a8e6b80db8ac1d92439d79bf90e078a1"
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Referrer-Policy: strict-origin-when-cross-origin
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=4jZFjn62Hgm4fpjX%2B%2FtkWqthZNlhX3qMzLFFP9oGCpI%3D\u0026sid=1b10b0ff-8a76-4548-befa-353fc6c6c045\u0026ts=1768266928"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=4jZFjn62Hgm4fpjX%2B%2FtkWqthZNlhX3qMzLFFP9oGCpI%3D&sid=1b10b0ff-8a76-4548-befa-353fc6c6c045&ts=1768266928"
Server: Heroku
Set-Cookie: _rethada_session=UlNTZDh5T3k3SmxBcVREeDZiZWZXZG1DWVIrZitEdmc5MGRiTDFSUWhEVzlZMlM2RjZNdXdtZEVlTThBNjJJUW03RzdYeFBSektiaU8xSjlSV25PZkZjQ0dIUTNDeWtiNFFuUXk3K0d2KzQ0a1VlTlFKVWIzNVlNSVFZRStGQnhaMU1NNDZ4STJBRmc4NlZuTWpxeDZMTzNnSGhFc2hLNjgwRm92bmJMNnZ6Q0tkNW85TnJUL1NoalU0VmdoTEVnLS1yUlZ4QTRiNUxqZXFDS3dWSDlRQ2VnPT0%3D--01300d550e367a6d167eb50da0990fb265142377; domain=.rethada.ms; path=/; HttpOnly
Via: 1.1 heroku-router
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-Permitted-Cross-Domain-Policies: none
X-Request-Id: c59b6258-9e13-1f8a-571f-8a615a42cc2b
X-Runtime: 0.003581
X-Xss-Protection: 1; mode=block
Connection: close

Page title: Gareth Adams - Ruby on Rails developer

<!DOCTYPE html>
<html lang='en'>
<head>
<meta charset='utf-8'>
<script>window.NREUM||(NREUM={});NREUM.info={"beacon":"bam.nr-data.net","errorBeacon":"bam.nr-data.net","licenseKey":"62412a8b25","applicationID":"714179","transactionName":"dAlXQhMMXg1TFEkMWFoDSVcGBh0IWAIDHA==","queueTime":2,"applicationTime":3,"agent":""}</script>
<script>(window.NREUM||(NREUM={})).init={ajax:{deny_list:["bam.nr-data.net"]},feature_flags:["soft_nav"]};(window.NREUM||(NREUM={})).loader_config={licenseKey:"62412a8b25",applicationID:"714179",browserID:"714619"};;/*! For license information please see nr-loader-rum-1.307.0.min.js.LICENSE.txt */
(()=>{var e,t,r={163:(e,t,r)=>{"use strict";r.d(t,{j:()=>E});var n=r(384),i=r(1741);var a=r(2555);r(860).K7.genericEvents;const s="experimental.resources",o="register",c=e=>{if(!e||"string"!=typeof e)return!1;try{document.createDocumentFragment().querySelector(e)}catch{return!1}return!0};var d=r(2614),u=r(944),l=r(8122);const f="[data-nr-mask]",g=e=>(0,l.a)(e,(()=>{const e={feature_flags:[],experimental:{allow_registered_children:!1,resources:!1},mask_selector:"*",block_selector:"[data-nr-block]",mask_input_options:{color:!1,date:!1,"datetime-local":!1,email:!1,month:!1,number:!1,range:!1,search:!1,tel:!1,text:!1,time:!1,url:!1,week:!1,textarea:!1,select:!1,password:!0}};return{ajax:{deny_list:void 0,block_internal:!0,enabled:!0,autoStart:!0},api:{get allow_registered_children(){return e.feature_flags.includes(o)||e.experimental.allow_registered_children},set allow_registered_children(t){e.experimental.allow_registered_children=t},duplicate_registered_data:!1},browser_consent_mode:{enabled:!1},distributed_tracing:{enabled:void 0,exclude_newrelic_header:void 0,cors_use_newrelic_header:void 0,cors_use_tracecontext_headers:void 0,allowed_origins:void 0},get feature_flags(){return e.feature_flags},set feature_flags(t){e.feature_flags=t},generic_events:{enabled:!0,autoStart:!0},harvest:{interval:30},jserrors:{enabled:!0,autoStart:!0},logging:{enabled:!0,autoStart:!0},metrics:{enabled:!0,autoStart:!0},obfuscate:void 0,page_action:{enabled:!0},page_view_event:{enabled:!0,autoStart:!0},page_view_timing:{enabled:!0,autoStart:!0},performance:{capture_marks:!1,capture_measures:!1,capture_detail:!0,resources:{get enabled(){return e.feature_flags.includes(s)||e.experimental.resources},set enabled(t){e.experimental.resources=t},asset_types:[],first_party_domains:[],ignore_newrelic:!0}},privacy:{cookies_enabled:!0},proxy:{assets:void 0,beacon:void 0},session:{expiresMs:d.wk,inactiveMs:d.BB},session_replay:{autoStart:!0,enabled:!1,preload:!1,sampling_rate:10,error_sampling_rate:100,collect_fonts:!1,inline_images:!1,fix_stylesheets:!0,mask_all_inputs:!0,get mask_text_selector(){return e.mask_selector},set mask_text_selector(t){c(t)?e.mask_selector="".concat(t,",").concat(f):""===t||null===t?e.mask_selector=f:(0,u.R)(5,t)},get block_class(){return"nr-block"},get ignore_class(){return"nr-ignore"},get mask_text_class(){return"nr-mask"},get block_selector(){return e.block_selector},set block_selector(t){c(t)?e.block_selector+=",".concat(t):""!==t&&(0,u.R)(6,t)},get mask_input_options(){return e.mask_input_options},set mask_input_options(t){t&&"object"==typeof t?e.mask_input_options={...t,password:!0}:(0,u.R)(7,t)}},session_trace:{enabled:!0,autoStart:!0},soft_navigations:{enabled:!0,autoStart:!0},spa:{enabled:!0,autoStart:!0},ssl:void 0,user_actions:{enabled:!0,elementAttributes:["id","className","tagName","type"]}}})());var p=r(6154),m=r(9324);let h=0;const v={buildEnv:m.F3,distMethod:m.Xs,version:m.xv,originTime:p.WN},b={consented:!1},y={appMetadata:{},get consented(){return this.session?.state?.consent||b.consented},set consented(e){b.consented=e},customTransaction:void 0,denyList:void 0,disabled:!1,harvester:void 0,isolatedBacklog:!1,isRecording:!1,loaderType:void 0,maxBytes:3e4,obfuscator:void 0,onerror:void 0,ptid:void 0,releaseIds:{},session:void 0,timeKeeper:void 0,registeredEntities:[],jsAttributesMetadata:{bytes:0},get harvestCount(){return++h}},_=e=>{const t=(0,l.a)(e,y),r=Object.keys(v).reduce((e,t)=>(e[t]={value

Found 3 hours ago by HttpPlugin