• Creation
  • Validation
  • Communication & fix
  • Disclosure

jobfloor.com / Source leak through exposed git directory

zythop reported 2021-10-14

The following URL is publicly accessible and is leaking source code : https://www.jobfloor.com/.git/config

IP:
195.15.226.44
Port:
443
Detected protocol:
https
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://jobfloor:<redacted>@gitlab.com/jobfloor/landingpage.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
Found by GitConfigPlugin 2021-09-19
Report created by zythop  2021-10-14
Report approved by BloodyShell  2021-10-16
New PDF report generated by system 2021-10-16
Report dispatched to ...@... by system 2021-10-16
Report dispatched to ...@... by system 2021-10-16
Report marked as fixed by BloodyShell  2021-10-31
Report closed by BloodyShell  2021-10-31
New PDF report generated by system 2021-10-31
Report edited by BloodyShell  2021-10-31
New PDF report generated by system 2021-10-31
Information
Owner jobfloor.com
Created 2021-10-14 17:47
Updated 2021-10-31 18:18
Fixed true

Contacts
c...@jobfloor.com
i...@jobfloor.com

Status
Status closed
Hosting contacted false
CERT contacted false

Download report