LeakIX report : Empatiza.br

Creation
Validation
Communication & fix
Disclosure

Empatiza.br / Credentials leak due to exposure of .env file

fapldo reported 2021-10-06

.env should be removed and/or hidden by the webserver

IP:

3.214.196.136

Port:

443

Detected protocol:

https

Vulnerable URL:

https://www.api2.empatiza.com.br/.env

APP_NAME=Empatiza
APP_ENV=local
APP_KEY=base64:<redacted>+<redacted>=
APP_DEBUG=true
APP_URL=https://localhost.empatiza.com

LOG_CHANNEL=stack

DB_CONNECTION=mysql
DB_HOST=empatiza.<redacted>.us-east-1.rds.amazonaws.com
DB_PORT=3306
DB_DATABASE=db_empatiza
DB_USERNAME=<redacted>
DB_PASSWORD=<redacted>

BROADCAST_DRIVER=log
CACHE_DRIVER=file
QUEUE_CONNECTION=sync
SESSION_DRIVER=file
SESSION_LIFETIME=120

REDIS_HOST=127.0.0.1
REDIS_PASSWORD=null
REDIS_PORT=6379

MAIL_MAILER=smtp
MAIL_HOST=smtp.googlemail.com
MAIL_PORT=465
MAIL_USERNAME=<redacted>@gmail.com
MAIL_PASSWORD=<redacted>!<redacted>
MAIL_ENCRYPTION=ssl
MAIL_FROM_ADDRESS=<redacted><redacted>gmail.com
MAIL_FROM_NAME="${APP_NAME}"

#MAIL_HOST=smtp.mailtrap.io
#MAIL_PORT=2525
#MAILGUN_DOMAIN=<redacted>
#MAILGUN_SECRET=<redacted>-<redacted>-<redacted>
#MAIL_USERNAME=<redacted>
#MAIL_PASSWORD=<redacted>
#MAIL_ENCRYPTION=null

AWS_ACCESS_KEY_ID=<redacted>
AWS_SECRET_ACCESS_KEY=<redacted>+<redacted>
AWS_DEFAULT_REGION=us-east-1
AWS_BUCKET=<redacted>

PUSHER_APP_ID=
PUSHER_APP_KEY=
PUSHER_APP_SECRET=
PUSHER_APP_CLUSTER=mt1

MIX_PUSHER_APP_KEY="${PUSHER_APP_KEY}"
MIX_PUSHER_APP_CLUSTER="${PUSHER_APP_CLUSTER}"

FACEBOOK_CLIENT_ID=<redacted>
FACEBOOK_CLIENT_SECRET=<redacted>

GOOGLE_CLIENT_ID=<redacted>
GOOGLE_CLIENT_SECRET=<redacted>

PAGSEGURO_CLIENT_ID=<redacted>
PAGSEGURO_CLIENT_SECRET=<redacted>
PAGSEGURO_CERTIFICATE=
PAGSEGURO_TOKEN_CONTA=<redacted>

PIX_KEY=<redacted>
PIX_MERCHANT_NAME=EMPATIZA
RECEIVER_KEY_PIX=<redacted>
#PIX_MERCHANT_CITY=SAO PAULO

#Emai do sendgrid <redacted>
#<redacted>

JWT_SECRET=<redacted>

Found by DotEnvConfigPlugin 2021-09-19

IP:

3.214.196.136

Port:

443

Detected protocol:

https

Vulnerable URL:

https://www.api2.empatiza.com.br/.env

APP_NAME=Empatiza
APP_ENV=local
APP_KEY=base64:<redacted>
APP_DEBUG=true
APP_URL=https://www.api2.empatiza.com.br/public

LOG_CHANNEL=stack

DB_CONNECTION=mysql
DB_HOST=<redacted>
DB_PORT=3306
DB_DATABASE=db_empatiza
DB_USERNAME=admin
DB_PASSWORD=<redacted>

BROADCAST_DRIVER=log
CACHE_DRIVER=file
QUEUE_CONNECTION=sync
SESSION_DRIVER=file
SESSION_LIFETIME=120

REDIS_HOST=127.0.0.1
REDIS_PASSWORD=null
REDIS_PORT=6379

MAIL_MAILER=smtp
MAIL_HOST=smtp.googlemail.com
MAIL_PORT=465
MAIL_USERNAME=<redacted>
MAIL_PASSWORD=<redacted>
MAIL_ENCRYPTION=ssl
MAIL_FROM_ADDRESS=<redacted>
MAIL_FROM_NAME="${APP_NAME}"

#MAIL_HOST=smtp.mailtrap.io
#MAIL_PORT=2525
#MAILGUN_DOMAIN=<redacted>
#MAILGUN_SECRET=<redacted>-6e0fd3a4-<redacted>
#MAIL_USERNAME=<redacted>
#MAIL_PASSWORD=<redacted>
#MAIL_ENCRYPTION=null

AWS_ACCESS_KEY_ID=<redacted>
AWS_SECRET_ACCESS_KEY=<redacted>+<redacted>
AWS_DEFAULT_REGION=us-east-1
AWS_BUCKET=<redacted>

PUSHER_APP_ID=
PUSHER_APP_KEY=
PUSHER_APP_SECRET=
PUSHER_APP_CLUSTER=mt1

MIX_PUSHER_APP_KEY="${PUSHER_APP_KEY}"
MIX_PUSHER_APP_CLUSTER="${PUSHER_APP_CLUSTER}"

FACEBOOK_CLIENT_ID=<redacted>
FACEBOOK_CLIENT_SECRET=<redacted>

GOOGLE_CLIENT_ID=801444959965-<redacted>.apps.googleusercontent.com
GOOGLE_CLIENT_SECRET=<redacted>-<redacted>

PAGSEGURO_CLIENT_ID=<redacted>
PAGSEGURO_CLIENT_SECRET=<redacted>
PAGSEGURO_CERTIFICATE=/var/www/html/storage/pix/sabrinasouza-sandbox.pem
PAGSEGURO_TOKEN_CONTA=<redacted>

PIX_KEY=<redacted>
PIX_MERCHANT_NAME=EMPATIZA
RECEIVER_KEY_PIX=<redacted>
#PIX_MERCHANT_CITY=SAO PAULO

#Emai do sendgrid <redacted>@gmail.com
#<redacted>

JWT_SECRET=<redacted>

Found by DotEnvConfigPlugin 2021-11-07

IP:

3.214.196.136

Port:

443

Detected protocol:

https

Vulnerable URL:

https://www.api2.empatiza.com.br/.env

APP_NAME=Empatiza
APP_ENV=local
APP_KEY=base64:<redacted>
APP_DEBUG=true
APP_URL=https://www.api2.empatiza.com.br/public

LOG_CHANNEL=stack

DB_CONNECTION=mysql
DB_HOST=<redacted>
DB_PORT=3306
DB_DATABASE=db_empatiza
DB_USERNAME=admin
DB_PASSWORD=<redacted>

BROADCAST_DRIVER=log
CACHE_DRIVER=file
QUEUE_CONNECTION=sync
SESSION_DRIVER=file
SESSION_LIFETIME=120

REDIS_HOST=127.0.0.1
REDIS_PASSWORD=null
REDIS_PORT=6379

MAIL_MAILER=smtp
MAIL_HOST=smtp.googlemail.com
MAIL_PORT=465
MAIL_USERNAME=<redacted>
MAIL_PASSWORD=<redacted>
MAIL_ENCRYPTION=ssl
MAIL_FROM_ADDRESS=<redacted>
MAIL_FROM_NAME="${APP_NAME}"

#MAIL_HOST=smtp.mailtrap.io
#MAIL_PORT=2525
#MAILGUN_DOMAIN=<redacted>
#MAILGUN_SECRET=<redacted>-6e0fd3a4-<redacted>
#MAIL_USERNAME=<redacted>
#MAIL_PASSWORD=<redacted>
#MAIL_ENCRYPTION=null

AWS_ACCESS_KEY_ID=<redacted>
AWS_SECRET_ACCESS_KEY=<redacted>+<redacted>
AWS_DEFAULT_REGION=us-east-1
AWS_BUCKET=<redacted>

PUSHER_APP_ID=
PUSHER_APP_KEY=
PUSHER_APP_SECRET=
PUSHER_APP_CLUSTER=mt1

MIX_PUSHER_APP_KEY="${PUSHER_APP_KEY}"
MIX_PUSHER_APP_CLUSTER="${PUSHER_APP_CLUSTER}"

FACEBOOK_CLIENT_ID=<redacted>
FACEBOOK_CLIENT_SECRET=<redacted>

GOOGLE_CLIENT_ID=801444959965-<redacted>.apps.googleusercontent.com
GOOGLE_CLIENT_SECRET=<redacted>-<redacted>

PAGSEGURO_CLIENT_ID=<redacted>
PAGSEGURO_CLIENT_SECRET=<redacted>
PAGSEGURO_CERTIFICATE=/var/www/html/storage/pix/sabrinasouza-sandbox.pem
PAGSEGURO_TOKEN_CONTA=<redacted>

PIX_KEY=<redacted>
PIX_MERCHANT_NAME=EMPATIZA
RECEIVER_KEY_PIX=<redacted>
#PIX_MERCHANT_CITY=SAO PAULO

#Emai do sendgrid <redacted>@gmail.com
#<redacted>

JWT_SECRET=<redacted>

Found by DotEnvConfigPlugin 2021-11-08

Report created by

fapldo 2021-10-06

Report edited by

BloodyShell 2021-10-06

Report approved by

BloodyShell 2021-10-06

New PDF report generated by system 2021-10-06

Report dispatched to ...@... by system 2021-10-06

Report edited by

BloodyShell 2021-10-06

New PDF report generated by system 2021-10-06

Report dispatched to ...@... by system 2021-10-06

Report edited by

BloodyShell 2021-10-06

New PDF report generated by system 2021-10-06

Report dispatched to ...@... by system 2021-10-06

Report edited by

BloodyShell 2021-10-09

New PDF report generated by system 2021-10-09

Report dispatched to ...@... by system 2021-10-09

Report comment dispatched to BloodyShell by system 2021-10-09

Report comment dispatched to iampritam by system 2021-10-09

Report comment dispatched to zythop by system 2021-10-09

Report comment dispatched to fokoil by system 2021-10-09

Report comment dispatched to BloodyShell by system 2021-10-09

Report comment dispatched to iampritam by system 2021-10-09

Report comment dispatched to zythop by system 2021-10-09

Report comment dispatched to fokoil by system 2021-10-09

system commented 2021-11-08: approved shows in report

bip! I'm a LeakIX probe.

This issue looks like it has been resolved!

New PDF report generated by system 2021-11-08

Report comment dispatched to fapldo by system 2021-11-08

Report comment dispatched to empatizatestes@gmail.com by system 2021-11-08

Report comment dispatched to cert@cert.br by system 2021-11-08

Report comment dispatched to pedrohenriquelm500@gmail.com by system 2021-11-08

Report comment dispatched to abuse@amazonaws.com by system 2021-11-08

Report comment dispatched to BloodyShell by system 2021-11-08

Report comment dispatched to iampritam by system 2021-11-08

Report comment dispatched to fokoil by system 2021-11-08

Report edited by

BloodyShell 2021-11-09

New PDF report generated by system 2021-11-09

Report marked as fixed by

BloodyShell 2021-11-09

Report closed by

BloodyShell 2021-11-09

New PDF report generated by system 2021-11-09

Information

Owner Empatiza.br

Created 2021-10-06 18:27

Updated 2021-11-09 14:57

Fixed true

Contacts

e...@gmail.com

c...@cert.br

p...@gmail.com

Status

Status closed

Hosting contacted false

CERT contacted false

Download report