- Creation
- Validation
- Communication & fix
- Disclosure
biig.fr / Source leak through exposed git directory
Deleted user
reported 2021-10-09
The following URL is publicly accessible and is leaking source code : https://52.73.217.225/.git/config
IP:
52.73.217.225Port:
443Detected protocol:
httpsVulnerable URL:
https://52.73.217.225/.git/config[core]
repositoryformatversion = 0
filemode = true
bare = false
logallrefupdates = true
[remote "origin"]
url = ssh://git@gitlab.biig.fr:2224/french-american-foundation/frenchamerican.org.git
fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
remote = origin
merge = refs/heads/master
[branch "develop"]
remote = origin
merge = refs/heads/develop
Found by GitConfigPlugin 2021-09-11
Report created by
deleted-user
2021-10-09
deleted-user
2021-10-09
Report edited by
BloodyShell
2021-10-09
BloodyShell
2021-10-09
Report approved by
BloodyShell
2021-10-09
BloodyShell
2021-10-09
New PDF report generated by system 2021-10-09
Report dispatched to ...@... by system 2021-10-09
Report dispatched to ...@... by system 2021-10-09
BloodyShell
commented 2021-10-11:
approved
shows in report
Looks down, let's wait 3 days before closing
New PDF report generated by system 2021-10-11
Report comment dispatched to zythop by system 2021-10-11
Report comment dispatched to contact@biig.fr by system 2021-10-11
Report comment dispatched to cert-fr.cossi@ssi.gouv.fr by system 2021-10-11
Report marked as fixed by
BloodyShell
2021-10-18
BloodyShell
2021-10-18
Report edited by
BloodyShell
2021-10-18
BloodyShell
2021-10-18
New PDF report generated by system 2021-10-18
Report closed by
BloodyShell
2021-10-18
BloodyShell
2021-10-18
New PDF report generated by system 2021-10-18
Information
Owner
biig.fr
Created
2021-10-09 12:19
Updated
2021-10-18 17:38
Fixed
true
Contacts
c...@biig.fr
c...@ssi.gouv.fr
Status
Status
closed
Hosting contacted
false
CERT contacted
false
Download report