Exposure of Sensitive Information Due to Incompatible Policies in ethibox/stacks

Valid

Reported on

Jul 8th 2021

✍️ Description

Please enter a description of the vulnerability.

1)Visit https://github.com/ethibox/stacks/blob/master/wordpress.yml#L47-L50 for the exposed database credentials

This vulnerability is capable of database getting compromised.

We have contacted a member of the ethibox/stacks team and are waiting to hear back 2 years ago

A ethibox/stacks maintainer marked this as fixed with commit 571266 2 years ago

The fix bounty has been dropped

This vulnerability will not receive a CVE

to join this conversation

We have contacted a member of the ethibox/stacks team and are waiting to hear back 2 years ago

A ethibox/stacks maintainer marked this as fixed with commit 571266 2 years ago

The fix bounty has been dropped

This vulnerability will not receive a CVE

to join this conversation