Public Github Repo Leaking Internal Credentials

Disclosed: 2022-11-07 23:45:12 By xinfohuggerx To yelp

Critical

Vulnerability Details

## Summary: In Github I found some credentials to use in a mesos.apache.org Github: https://github.com/Yelp/Tron/blob/master/yelp_package/itest_dockerfiles/mesos/mesos-secrets https://github.com/Yelp/Tron/blob/master/yelp_package/itest_dockerfiles/mesos/mesos-slave-secret ## POC ss {F2021070} {F2021071} Login documentation https://mesos.apache.org https://mesos.apache.org/documentation/latest/authentication/ ## Impact Unauthorized account access /information disclosure

Actions

View on HackerOne

Report Stats

Report ID: 1763266
State: Closed
Substate: informative
Upvotes: 10

Public Github Repo Leaking Internal Credentials

Vulnerability Details

Actions

Report Stats

Share this report