Information disclosure at lite.uber.com

Disclosed: 2016-06-13 22:41:00 By kusl To uber

Unknown

Vulnerability Details

Hello! 1. At https://lite.uber.com/auth/login I get 302-redirect to https://login.uber.com. 2. After post my email and password I get callback to https://lite.uber.com/auth/callback?code=efopqUAx2uwMOqJafHGj2OP8yNxXkf#_ 3. At this page we can see trace stack with names of nodejs modules, full path disclose... File attached. Best Wishes!

Actions

View on HackerOne

Report Stats

Report ID: 128853
State: Closed
Substate: informative
Upvotes: 2

Information disclosure at lite.uber.com

Vulnerability Details

Actions

Report Stats

Share this report