The following URL (usually /.git/config
) is publicly accessible and is leaking source code and repository configuration.
Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522ce4d361c
[core] repositoryformatversion = 0 filemode = true bare = false logallrefupdates = true [remote "origin"] url = https://github.com/WavyInc/inqledge.com fetch = +refs/heads/*:refs/remotes/origin/* [branch "primary"] remote = origin merge = refs/heads/primary [credential] helper = store
Jenkins instance is publicly available.
This could leak to source code or artifact leaks if not properly configured.
Fingerprint: fccae5bcd22b6a59fb1b2858fdfb8ba6fbc2027d02ea6df67a82c1ef04f25d6a
Found Jenkins job Loud_Android_Dev Found artifact build-unity.log in build 144 Found Jenkins job Loud_iOS_Dev Found artifact build-unity.log in build 253 Found artifact DistributionSummary.plist in build 253 Found artifact ExportOptions.plist in build 253 Found artifact Packaging.log in build 253 Found Jenkins job Sandbox Found Jenkins job SandboxPipeline