Sensitive Information disclosure Through Config File
K
Kubernetes
Submitted None
Team Summary
Official summary from Kubernetes
The hacker notified us that https://prow.k8s.io/config contains sensitive information, but we believe that none of the information contained in the file is sensitive.
Actions:
Reported by
a1c3venom
Vulnerability Details
Technical details and impact analysis
Report Submission Form
## Summary:
hello Team
while Exploring Your Site.I found Config File Is leaked
In Your Site Where Contains Sensitive Information,Credentials ETc
Vulnerable URL:- https://prow.k8s.io/config
## Impact
Attacker Is Able To Gain sensitive Information About target and Also might Get Credentials
Report Details
Additional information and metadata
State
Closed
Substate
Duplicate
Submitted
Weakness
Information Disclosure