A JSON configuration file has been found at config.json
.
It may contains application configuration such as credentials.
False positive might happen when hitting a JSON API endpoint.
Fingerprint: b18befd9dd65368232cc5fa032cc5fa032cc5fa032cc5fa032cc5fa032cc5fa0
{"io":"socket1"}
A JSON configuration file has been found at config.json
.
It may contains application configuration such as credentials.
False positive might happen when hitting a JSON API endpoint.
Fingerprint: b18befd9dd65368222c7c90222c7c90222c7c90222c7c90222c7c90222c7c902
{"io":"socket3"}
A JSON configuration file has been found at config.json
.
It may contains application configuration such as credentials.
False positive might happen when hitting a JSON API endpoint.
Fingerprint: b18befd9dd653682c0c4f0dfc0c4f0dfc0c4f0dfc0c4f0dfc0c4f0dfc0c4f0df
{"io":"socket2"}
The following URL (usually /.git/config
) is publicly accessible and is leaking source code and repository configuration.
Additionally the GIT credentials are present and could give unauthorized access to source code repository of private projects.
Severity: critical
Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522177d7c63
[core] repositoryformatversion = 0 filemode = true bare = false logallrefupdates = true [user] name = innyzl email = inan.yazili@gmail.com [remote "origin"] url = https://innyzl:sGWqDDuZCDpvFFHvVyt2@bitbucket.org/hk-2015/geliserekzayiflama.com.git fetch = +refs/heads/*:refs/remotes/origin/*
Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522726fd7af
[core] repositoryformatversion = 0 filemode = true bare = false logallrefupdates = true [remote "origin"] url = https://innyzl@bitbucket.org/hk-2015/geliserekzayiflama.com.git fetch = +refs/heads/*:refs/remotes/origin/*