Able to view Backend Database dur to improper authentication
Medium
Vulnerability Details
Vulnerable domain: https://█████████
Endpoint: https://█████████/schema/columns.byTable.html
Description:
When you visit the above endpoint you will get all the backend database. Its a critical vulnerability and should be patch as soon as possible.
Let me know if you want any more details.
FInd the POCs:
Thanks.
Actions
View on HackerOneReport Stats
- Report ID: 258573
- State: Closed
- Substate: resolved
- Upvotes: 4