LeakIX - Host demo.mobilerider.com

Domain demo.mobilerider.com

Germany

Akamai International B.V.

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

Additionally the GIT credentials are present and could give unauthorized access to source code repository of private projects.

IP: 23.53.43.11
Domain: demo.mobilerider.com
Port: 443
URL: https://demo.mobilerider.com

First seen 2023-11-20 15:02
Last seen 2024-05-12 22:01
Open for 174 days

Severity: critical
Fingerprint: 2580fa947178c88c8f88f4f64b143e4f192660cba91884029ffc42c147a767cb

[init]
	defaultBranch = none
[fetch]
	recurseSubmodules = false
[transfer]
	bundleURI = true
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://gitlab-ci-token:65_4KRZ9XzB4zp_fYfZHQHJ@gitlab.com/mobilerider/mobilerider.com.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[lfs]
	repositoryformatversion = 0

Found on 2024-05-12 22:01

381 Bytes

Severity: critical
Fingerprint: 2580fa947178c88c8f88f4f64b143e4f192660cba91884029ffc42c15dc73815

[init]
	defaultBranch = none
[fetch]
	recurseSubmodules = false
[transfer]
	bundleURI = true
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://gitlab-ci-token:65_j3YwW-VLwjnrr97x9n8d@gitlab.com/mobilerider/mobilerider.com.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[lfs]
	repositoryformatversion = 0

Found on 2024-01-07 05:55

381 Bytes

Severity: critical
Fingerprint: 2580fa947178c88c8f88f4f64b143e4f192660cba91884022e566c814a1917d3

[init]
	defaultBranch = none
[fetch]
	recurseSubmodules = false
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://gitlab-ci-token:64_sqrPz5rBdUH2fLkRvtcK@gitlab.com/mobilerider/mobilerider.com.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[lfs]
	repositoryformatversion = 0

Found on 2023-12-24 02:42

352 Bytes

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 23.53.43.88
Domain: demo.mobilerider.com
Port: 443
URL: https://demo.mobilerider.com

First seen 2023-11-20 15:02
Last seen 2024-05-12 22:01
Open for 174 days
- Severity: high
  Fingerprint: 5f32cf5d6962f09c1a5d9b0f1a5d9b0feaba5642122b030252498a1e52498a1e
```
Found 3 files trough .DS_Store spidering:

/mr_db.sql
/mrstatic
/salient-child
```
  Found on 2024-05-12 22:01
Create report

Domain summary

demo.mobilerider.com 4

1 recorded

IP summary

23.53.43.11 1 23.53.43.88 1

2 recorded

Domain demo.mobilerider.com

Germany

Git configuration and history exposed

MacOS file listing through .DS_Store file

Domain summary

IP summary