Domain dev.potatohead.co
Singapore
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
First seen 2023-09-12 08:12
Last seen 2023-09-23 07:38
Open for 10 days-
Severity: medium
Fingerprint: 5f32cf5d6962f09c0ac411c00ac411c0bed5716b18a85f3247d8c02b1bd3c786Found 88 files trough .DS_Store spidering: /dbstagging-191220 /devp1 /devp1/gulpfile.js /devp1/index.php /devp1/license.txt /devp1/node_modules /devp1/package-lock.json /devp1/package.json /devp1/readme.html /devp1/webpack.config.js /devp1/wp-activate.php /devp1/wp-admin /devp1/wp-blog-header.php /devp1/wp-comments-post.php /devp1/wp-config-sample.php /devp1/wp-config.php /devp1/wp-config_online.php /devp1/wp-content /devp1/wp-content/index.php /devp1/wp-content/plugins /devp1/wp-content/plugins/akismet /devp1/wp-content/plugins/block-gallery-pohe /devp1/wp-content/plugins/button-option-sidebar-gutenberg-pohe /devp1/wp-content/plugins/button-option-sidebar-gutenberg-pohe/build /devp1/wp-content/plugins/button-option-sidebar-gutenberg-pohe/index.php /devp1/wp-content/plugins/button-option-sidebar-gutenberg-pohe/node_modules /devp1/wp-content/plugins/button-option-sidebar-gutenberg-pohe/package-lock.json /devp1/wp-content/plugins/button-option-sidebar-gutenberg-pohe/package.json /devp1/wp-content/plugins/button-option-sidebar-gutenberg-pohe/src /devp1/wp-content/plugins/colorful-categories /devp1/wp-content/plugins/colorful-fontcategories /devp1/wp-content/plugins/easy-table-of-contents /devp1/wp-content/plugins/icon-2-column /devp1/wp-content/plugins/icon-facilities /devp1/wp-content/plugins/if-menu /devp1/wp-content/plugins/index.php /devp1/wp-content/plugins/mailchimp-for-wp /devp1/wp-content/plugins/menu-image /devp1/wp-content/plugins/pdf-viewer /devp1/wp-content/plugins/pohe-calendar /devp1/wp-content/plugins/post-wrapper /devp1/wp-content/plugins/really-simple-ssl /devp1/wp-content/plugins/single-map /devp1/wp-content/plugins/video-featured-pohe /devp1/wp-content/plugins/wordpress-seo /devp1/wp-content/plugins/wp-fastest-cache /devp1/wp-content/plugins/wp-image-marker /devp1/wp-content/plugins/wp-smushit /devp1/wp-content/themes /devp1/wp-content/uploads /devp1/wp-cron.php /devp1/wp-includes /devp1/wp-links-opml.php /devp1/wp-load.php /devp1/wp-login.php /devp1/wp-mail.php /devp1/wp-settings.php /devp1/wp-signup.php /devp1/wp-trackback.php /devp1/xmlrpc.php /gulpfile.js /images /index.php /license.txt /node_modules /package-lock.json /package.json /readme.html /webpack.config.js /wp-activate.php /wp-admin /wp-blog-header.php /wp-comments-post.php /wp-config-sample.php /wp-config-staging.php /wp-config.php /wp-config_online.php /wp-content /wp-cron.php /wp-includes /wp-links-opml.php /wp-load.php /wp-login.php /wp-mail.php /wp-settings.php /wp-signup.php /wp-trackback.php /xmlrpc.php
Found on 2023-09-12 08:12
-
-
Git configuration and history exposed
The following URL (usually
/.git/config) is publicly accessible and is leaking source code and repository configuration.First seen 2023-09-12 08:12
Last seen 2023-09-23 07:38
Open for 10 days-
Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522593b25e9[core] repositoryformatversion = 0 filemode = true bare = false logallrefupdates = true [remote "origin"] url = https://github.com/fleava/ptthead-wordpress.git fetch = +refs/heads/*:refs/remotes/origin/* [branch "master"] remote = origin merge = refs/heads/master [user] name = egiesem email = egiesem92@gmail.com [remote "origin2"] url = git@github.com:fleava/ptthead-wordpress.git fetch = +refs/heads/*:refs/remotes/origin2/*
Found on 2023-09-12 08:12440 Bytes
-