China - Leaked credentials permitted a limited ability to create Starbucks coupons and cards
High
S
Starbucks
Submitted None
Team Summary
Official summary from Starbucks
neweq discovered a Github repository exposing credentials with which they could obtain an access token. The access token permitted limited access to generate Starbucks coupons and cards. @neweq — thank you for reporting this vulnerability.
Actions:
Reported by
b006e4ea768a5d1b5340969
Report Details
Additional information and metadata
State
Closed
Substate
Resolved
Submitted
Weakness
Insufficiently Protected Credentials