.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
Severity: high
Fingerprint: 5f32cf5d6962f09c2a439cf82a439cf81aafdba437b52110d8f87ea9e06eaed7
Found 31 files trough .DS_Store spidering: /app /bitbucket-pipelines.yml /cache.php /car_slider.php /carfax.php /config.backup /config.php /counter.php /cron /deploy_dev.sh /deploy_stage.sh /download /gum_products.php /htaccess_live /htaccess_local /hub.php /index.php /mailchimp.php /mig.php /public /query.txt /regex.php /robots.php /robots.txt /Secirity.txt /sitemap.php /sticker /system /test.php /tmp /vhr_db.sql
The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.
Severity: high
Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb8962f25b
[core] repositoryformatversion = 0 filemode = false bare = false logallrefupdates = true symlinks = false ignorecase = true [remote "origin"] url = https://ahsan_empire_pixel@bitbucket.org/vhr_developers/core-frontend.git fetch = +refs/heads/*:refs/remotes/origin/* [branch "master"] remote = origin merge = refs/heads/master [branch "develop"] remote = origin merge = refs/heads/develop [branch "changes"] remote = origin merge = refs/heads/changes