Download full backup [Mtn.co.rw]
Critical
Vulnerability Details
## Summary:
I discovered few critical vulnerabilities here, one of them is exposed backup files via directory listing.
## Steps To Reproduce:
go to https://mtn.co.rw/mtn.zip and download the file
extract the file and open
you will see the full backup of the website
## Similar report:
https://hackerone.com/reports/684838
## Impact
Source code & DB credentials leakage. Attacker can use it to compromise the resource.
Actions
View on HackerOneReport Stats
- Report ID: 1516520
- State: Closed
- Substate: resolved
- Upvotes: 18