twitter api access token leaked on github

Disclosed: 2018-06-02 14:06:24 By sonahri_501 To liberapay
None
Vulnerability Details
sensitive token were leaked on GitHub page of liberapay . also mixpanel token was leaked TWITTER_CONSUMER_KEY=QBB9vEhxO4DFiieRF68zTA TWITTER_CONSUMER_SECRET=mUymh1hVMiQdMQbduQFYRi79EYYVeOZGrhj27H59H78 +TWITTER_ACCESS_KEY=34175404-G6W8Hh19GWuUhIMEXK0LyZsy7N9aCMcy1bYJ9rI +TWITTER_ACCESS_SECRET=K6wxV1OCsihZAkEPkWtoLYDiRJnWajBBWn4UgliTRQ TWITTER_CALLBACK=http://127.0.0.1:8537/on/twitter/associate MIXPANEL_TOKEN=cb9dec68ac0ee57071f0be39f164a417 ## Impact a attacker with your credentials can have severe impact
Actions
View on HackerOne
Report Stats
  • Report ID: 361089
  • State: Closed
  • Substate: not-applicable
  • Upvotes: 3
Share this report