Host 84.49.246.91
Norway
Software information
Microsoft-IIS 10.0
tcp/443 tcp/80
-
Swagger API description is publicly available
Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.
Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.
While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.
First seen 2025-12-26 09:04
Last seen 2026-01-23 12:08
Open for 28 days-
Severity: info
Fingerprint: 5733ddf49ff49cd1aad03549338a7d950d710d76002f82e47749147f751d2acaPublic Swagger UI/API detected at path: /swagger/index.html - sample paths: DELETE /api/v1/invoice{invoiceId} GET /api/v1/consignment GET /api/v1/customer GET /api/v1/customer/org-number={orgNumber} GET /api/v1/customer/{id} GET /api/v1/directory-service/basic-company-info/{orgNumber} GET /api/v1/file/{id} GET /api/v1/invoice GET /api/v1/jobs/create-diploma GET /api/v1/jobs/create-economic-report GET /api/v1/jobs/sync-fiken-invoice-payments GET /api/v1/jobs/sync-order-notification-emails GET /api/v1/leads/customers-by-latest-order-date GET /api/v1/order GET /api/v1/order-comment GET /api/v1/order-notifications/count/inbox GET /api/v1/order-notifications/inbox GET /api/v1/order-notifications/inbox/{messageId} GET /api/v1/order/{id} GET /api/v1/user GET /api/v1/user/self GET /test-get-user PATCH /api/v1/order-notifications/inbox/{messageId}/is-processed PATCH /api/v1/order/{id}/fulfillment-status PATCH /api/v1/order/{id}/invoice-sent PATCH /api/v1/order/{order-id}/items-delivered-by-email PATCH /api/v1/order/{order-id}/items-delivered-by-post POST /api/v1/identity/login POST /api/v1/identity/refresh POST /api/v1/identity/register POST /api/v1/jobs/sync-fiken-invoice-payments/run POST /api/v1/order/{order-id}/consignment POST /api/v1/order/{orderId}/add-fiken-invoice-by-id/{fikenInvoiceId} POST /api/v1/order/{orderId}/add-fiken-invoice-by-invoice-number/{fikenInvoiceNumber} POST /api/v1/user/change-password POST /api/v1/user/reset-password POST /api/v1/user/send-password-reset-token PUT /api/v1/order-comment/{id} PUT /api/v1/user/{id}Found on 2026-01-23 12:08
-
-
Swagger API description is publicly available
Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.
Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.
While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.
First seen 2025-10-31 08:38
Last seen 2026-01-16 02:36
Open for 76 days-
Severity: info
Fingerprint: 5733ddf49ff49cd1aad03549338a7d950d710d76002f82e47749147f751d2acaPublic Swagger UI/API detected at path: /swagger/index.html - sample paths: DELETE /api/v1/invoice{invoiceId} GET /api/v1/consignment GET /api/v1/customer GET /api/v1/customer/org-number={orgNumber} GET /api/v1/customer/{id} GET /api/v1/directory-service/basic-company-info/{orgNumber} GET /api/v1/file/{id} GET /api/v1/invoice GET /api/v1/jobs/create-diploma GET /api/v1/jobs/create-economic-report GET /api/v1/jobs/sync-fiken-invoice-payments GET /api/v1/jobs/sync-order-notification-emails GET /api/v1/leads/customers-by-latest-order-date GET /api/v1/order GET /api/v1/order-comment GET /api/v1/order-notifications/count/inbox GET /api/v1/order-notifications/inbox GET /api/v1/order-notifications/inbox/{messageId} GET /api/v1/order/{id} GET /api/v1/user GET /api/v1/user/self GET /test-get-user PATCH /api/v1/order-notifications/inbox/{messageId}/is-processed PATCH /api/v1/order/{id}/fulfillment-status PATCH /api/v1/order/{id}/invoice-sent PATCH /api/v1/order/{order-id}/items-delivered-by-email PATCH /api/v1/order/{order-id}/items-delivered-by-post POST /api/v1/identity/login POST /api/v1/identity/refresh POST /api/v1/identity/register POST /api/v1/jobs/sync-fiken-invoice-payments/run POST /api/v1/order/{order-id}/consignment POST /api/v1/order/{orderId}/add-fiken-invoice-by-id/{fikenInvoiceId} POST /api/v1/order/{orderId}/add-fiken-invoice-by-invoice-number/{fikenInvoiceNumber} POST /api/v1/user/change-password POST /api/v1/user/reset-password POST /api/v1/user/send-password-reset-token PUT /api/v1/order-comment/{id} PUT /api/v1/user/{id}Found on 2026-01-16 02:36 -
Severity: info
Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532cPublic Swagger UI/API detected at path: /swagger/index.html
Found on 2025-12-24 15:31 -
Severity: info
Fingerprint: 5733ddf49ff49cd1aad03549338a7d950d710d76002f82e47749147f4a672111Public Swagger UI/API detected at path: /swagger/index.html - sample paths: DELETE /api/v1/invoice{invoiceId} GET /api/v1/consignment GET /api/v1/customer GET /api/v1/customer/org-number={orgNumber} GET /api/v1/customer/{id} GET /api/v1/directory-service/basic-company-info/{orgNumber} GET /api/v1/file/{id} GET /api/v1/invoice GET /api/v1/jobs/create-diploma GET /api/v1/jobs/create-economic-report GET /api/v1/jobs/sync-fiken-invoice-payments GET /api/v1/leads/customers-by-latest-order-date GET /api/v1/order GET /api/v1/order-comment GET /api/v1/order-notifications/count/inbox GET /api/v1/order-notifications/inbox GET /api/v1/order-notifications/inbox/{messageId} GET /api/v1/order/{id} GET /api/v1/user GET /api/v1/user/self GET /test-get-user PATCH /api/v1/order-notifications/inbox/{messageId}/is-processed PATCH /api/v1/order/{id}/fulfillment-status PATCH /api/v1/order/{id}/invoice-sent PATCH /api/v1/order/{order-id}/items-delivered-by-email PATCH /api/v1/order/{order-id}/items-delivered-by-post POST /api/v1/identity/login POST /api/v1/identity/refresh POST /api/v1/identity/register POST /api/v1/jobs/sync-fiken-invoice-payments/run POST /api/v1/order/{order-id}/consignment POST /api/v1/order/{orderId}/add-fiken-invoice-by-id/{fikenInvoiceId} POST /api/v1/order/{orderId}/add-fiken-invoice-by-invoice-number/{fikenInvoiceNumber} POST /api/v1/user/change-password POST /api/v1/user/reset-password POST /api/v1/user/send-password-reset-token PUT /api/v1/order-comment/{id} PUT /api/v1/user/{id}Found on 2025-12-16 13:05 -
Severity: info
Fingerprint: 5733ddf49ff49cd1aad03549338a7d950d710d76002f82e47749147f3c5e12bdPublic Swagger UI/API detected at path: /swagger/index.html - sample paths: DELETE /api/v1/invoice{invoiceId} GET /api/v1/consignment GET /api/v1/customer GET /api/v1/customer/org-number={orgNumber} GET /api/v1/customer/{id} GET /api/v1/directory-service/basic-company-info/{orgNumber} GET /api/v1/file/{id} GET /api/v1/invoice GET /api/v1/jobs/create-diploma GET /api/v1/jobs/create-economic-report GET /api/v1/leads/customers-by-latest-order-date GET /api/v1/order GET /api/v1/order-comment GET /api/v1/order-notifications/count/inbox GET /api/v1/order-notifications/inbox GET /api/v1/order-notifications/inbox/{messageId} GET /api/v1/order/{id} GET /api/v1/user GET /api/v1/user/self GET /test-get-user PATCH /api/v1/order-notifications/inbox/{messageId}/is-processed PATCH /api/v1/order/{id}/fulfillment-status PATCH /api/v1/order/{id}/invoice-sent PATCH /api/v1/order/{order-id}/items-delivered-by-email PATCH /api/v1/order/{order-id}/items-delivered-by-post POST /api/v1/identity/login POST /api/v1/identity/refresh POST /api/v1/identity/register POST /api/v1/order/{order-id}/consignment POST /api/v1/order/{orderId}/add-fiken-invoice-by-id/{fikenInvoiceId} POST /api/v1/order/{orderId}/add-fiken-invoice-by-invoice-number/{fikenInvoiceNumber} POST /api/v1/user/change-password POST /api/v1/user/reset-password POST /api/v1/user/send-password-reset-token PUT /api/v1/order-comment/{id} PUT /api/v1/user/{id}Found on 2025-11-28 14:48 -
Severity: info
Fingerprint: 5733ddf49ff49cd1aad03549338a7d950d710d76002f82e47749147f5a384f83Public Swagger UI/API detected at path: /swagger/index.html - sample paths: DELETE /api/v1/invoice{invoiceId} GET /api/v1/consignment GET /api/v1/customer GET /api/v1/customer/org-number={orgNumber} GET /api/v1/customer/{id} GET /api/v1/directory-service/basic-company-info/{orgNumber} GET /api/v1/file/{id} GET /api/v1/invoice GET /api/v1/jobs/create-diploma GET /api/v1/jobs/create-economic-report GET /api/v1/leads/customers-by-latest-order-date GET /api/v1/order GET /api/v1/order-notifications/count/inbox GET /api/v1/order-notifications/inbox GET /api/v1/order-notifications/inbox/{messageId} GET /api/v1/order/{id} GET /api/v1/user GET /api/v1/user/self GET /order-comment GET /test-get-user PATCH /api/v1/order-notifications/inbox/{messageId}/is-processed PATCH /api/v1/order/{id}/fulfillment-status PATCH /api/v1/order/{id}/invoice-sent PATCH /api/v1/order/{order-id}/items-delivered-by-email PATCH /api/v1/order/{order-id}/items-delivered-by-post POST /api/v1/identity/login POST /api/v1/identity/refresh POST /api/v1/identity/register POST /api/v1/order/{order-id}/consignment POST /api/v1/order/{orderId}/add-fiken-invoice-by-id/{fikenInvoiceId} POST /api/v1/order/{orderId}/add-fiken-invoice-by-invoice-number/{fikenInvoiceNumber} POST /api/v1/user/change-password POST /api/v1/user/reset-password POST /api/v1/user/send-password-reset-token PUT /api/v1/user/{id} PUT /order-comment/{id}Found on 2025-11-16 07:48
-
-
Open service 84.49.246.91:80 · skarv.emelle.no
2026-01-23 12:08
HTTP/1.1 307 Temporary Redirect Transfer-Encoding: chunked Location: https://skarv.emelle.no/ Server: Microsoft-IIS/10.0 X-Powered-By: ASP.NET Date: Fri, 23 Jan 2026 12:08:55 GMT Connection: close
Found 2026-01-23 by HttpPluginCreate report
-
Open service 84.49.246.91:80 · skarv.emelle.no
2026-01-09 06:49
HTTP/1.1 307 Temporary Redirect Transfer-Encoding: chunked Location: https://skarv.emelle.no/ Server: Microsoft-IIS/10.0 X-Powered-By: ASP.NET Date: Fri, 09 Jan 2026 06:49:14 GMT Connection: close
Found 2026-01-09 by HttpPluginCreate report
-
Open service 84.49.246.91:443 · skarv.emelle.no
2026-01-09 02:56
HTTP/1.1 200 OK Content-Length: 815 Content-Type: text/html Last-Modified: Fri, 19 Dec 2025 21:08:18 GMT Accept-Ranges: bytes ETag: "1dc712b99138e2f" Server: Microsoft-IIS/10.0 Strict-Transport-Security: max-age=2592000 X-Powered-By: ASP.NET Date: Fri, 09 Jan 2026 02:56:23 GMT Connection: close Page title: Skarv <!DOCTYPE html> <html lang="en"> <head> <meta charset="utf-8"> <meta http-equiv="X-UA-Compatible" content="IE=edge"> <meta name="viewport" content="width=device-width,initial-scale=1.0"> <meta name="theme-color" content="#036572"> <link rel="icon" type="image/svg+xml" href="/favicon.svg"> <link rel="icon" href="/icon-32x32.png"> <link rel="icon" href="/icon-64x64.png"> <title>Skarv</title> <script type="module" crossorigin src="/dist/index-CDR22XPL.js"></script> <link rel="stylesheet" crossorigin href="/dist/index-DzldyqQ_.css"> </head> <body> <noscript> <strong>We're sorry but Skarv doesn't work properly without JavaScript enabled. Please enable it to continue.</strong> </noscript> <div id="app"></div> </body> </html>Found 2026-01-09 by HttpPluginCreate report
-
Open service 84.49.246.91:80 · skarv.emelle.no
2026-01-02 02:26
HTTP/1.1 307 Temporary Redirect Transfer-Encoding: chunked Location: https://skarv.emelle.no/ Server: Microsoft-IIS/10.0 X-Powered-By: ASP.NET Date: Fri, 02 Jan 2026 02:26:49 GMT Connection: close
Found 2026-01-02 by HttpPluginCreate report
-
Open service 84.49.246.91:443 · skarv.emelle.no
2026-01-02 00:06
HTTP/1.1 200 OK Content-Length: 815 Content-Type: text/html Last-Modified: Fri, 19 Dec 2025 21:08:18 GMT Accept-Ranges: bytes ETag: "1dc712b99138e2f" Server: Microsoft-IIS/10.0 Strict-Transport-Security: max-age=2592000 X-Powered-By: ASP.NET Date: Fri, 02 Jan 2026 00:06:02 GMT Connection: close Page title: Skarv <!DOCTYPE html> <html lang="en"> <head> <meta charset="utf-8"> <meta http-equiv="X-UA-Compatible" content="IE=edge"> <meta name="viewport" content="width=device-width,initial-scale=1.0"> <meta name="theme-color" content="#036572"> <link rel="icon" type="image/svg+xml" href="/favicon.svg"> <link rel="icon" href="/icon-32x32.png"> <link rel="icon" href="/icon-64x64.png"> <title>Skarv</title> <script type="module" crossorigin src="/dist/index-CDR22XPL.js"></script> <link rel="stylesheet" crossorigin href="/dist/index-DzldyqQ_.css"> </head> <body> <noscript> <strong>We're sorry but Skarv doesn't work properly without JavaScript enabled. Please enable it to continue.</strong> </noscript> <div id="app"></div> </body> </html>Found 2026-01-02 by HttpPluginCreate report
-
Open service 84.49.246.91:443 · skarv.emelle.no
2025-12-22 16:17
HTTP/1.1 200 OK Content-Length: 815 Content-Type: text/html Last-Modified: Fri, 19 Dec 2025 21:08:18 GMT Accept-Ranges: bytes ETag: "1dc712b99138e2f" Server: Microsoft-IIS/10.0 Strict-Transport-Security: max-age=2592000 X-Powered-By: ASP.NET Date: Mon, 22 Dec 2025 16:17:52 GMT Connection: close Page title: Skarv <!DOCTYPE html> <html lang="en"> <head> <meta charset="utf-8"> <meta http-equiv="X-UA-Compatible" content="IE=edge"> <meta name="viewport" content="width=device-width,initial-scale=1.0"> <meta name="theme-color" content="#036572"> <link rel="icon" type="image/svg+xml" href="/favicon.svg"> <link rel="icon" href="/icon-32x32.png"> <link rel="icon" href="/icon-64x64.png"> <title>Skarv</title> <script type="module" crossorigin src="/dist/index-CDR22XPL.js"></script> <link rel="stylesheet" crossorigin href="/dist/index-DzldyqQ_.css"> </head> <body> <noscript> <strong>We're sorry but Skarv doesn't work properly without JavaScript enabled. Please enable it to continue.</strong> </noscript> <div id="app"></div> </body> </html>Found 2025-12-22 by HttpPluginCreate report