Critical sensitive information Disclosure. [HtUS]

Disclosed: 2023-01-13 18:05:48 By berserkbd47 To deptofdefense
High
Vulnerability Details
(Database user,Database password,Database name) on https://██████.edu/ I got sensitive information: view-source:https://██████████.edu/database.php.orig Database information (Database user,Database password,Database name) $hostname = '████████.edu'; $db = '█████████'; $username = '████_user'; $password = '████'; ## Impact Bug impact: Sensitive information disclosed and possible for an attacker can access into the system.
Actions
View on HackerOne
Report Stats
  • Report ID: 1626236
  • State: Closed
  • Substate: resolved
  • Upvotes: 35
Share this report