Host 3.38.74.84
South Korea
-
Git configuration and history exposed
The following URL (usually
/.git/config) is publicly accessible and is leaking source code and repository configuration.Additionally the GIT credentials are present and could give unauthorized access to source code repository of private projects.
First seen 2022-07-12 15:53-
Severity: critical
Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522a15225f9[core] repositoryformatversion = 0 filemode = true bare = false logallrefupdates = true [remote "origin"] url = https://x-access-token:ghs_HOiCRRCZvomtXGAH6ONlhwGulKLpRA3jINAZ@github.com/bsord/tetris.git fetch = +refs/heads/*:refs/remotes/origin/* [gc] auto = 0 [http "https://github.com/"] extraheader = AUTHORIZATION: basic eC1hY2Nlc3MtdG9rZW46Z2hzX0hPaUNSUkNadm9tdFhHQUg2T05saHdHdWxLTHBSQTNqSU5BWg== [branch "master"] remote = origin merge = refs/heads/master [user] name = Conventional Changelog Action email = conventional.changelog.action@github.com
Found on 2022-07-12 15:53568 Bytes
-
-
Git configuration and history exposed
The following URL (usually
/.git/config) is publicly accessible and is leaking source code and repository configuration.Additionally the GIT credentials are present and could give unauthorized access to source code repository of private projects.
First seen 2022-07-12 15:53-
Severity: critical
Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522a15225f9[core] repositoryformatversion = 0 filemode = true bare = false logallrefupdates = true [remote "origin"] url = https://x-access-token:ghs_HOiCRRCZvomtXGAH6ONlhwGulKLpRA3jINAZ@github.com/bsord/tetris.git fetch = +refs/heads/*:refs/remotes/origin/* [gc] auto = 0 [http "https://github.com/"] extraheader = AUTHORIZATION: basic eC1hY2Nlc3MtdG9rZW46Z2hzX0hPaUNSUkNadm9tdFhHQUg2T05saHdHdWxLTHBSQTNqSU5BWg== [branch "master"] remote = origin merge = refs/heads/master [user] name = Conventional Changelog Action email = conventional.changelog.action@github.com
Found on 2022-07-12 15:53568 Bytes
-