Leaked JFrog Artifactory username and password exposed on GitHub - https://snapchat.jfrog.io
High
S
Snapchat
Submitted None
Team Summary
Official summary from Snapchat
Researcher found valid jFrog credentials which were committed to a public Github repository of a Snap employee. This allowed access to internal Snap libraries/artifacts along with the ability to push updates to existing artifacts as well.
Actions:
Reported by
kiyell
Report Details
Additional information and metadata
State
Closed
Substate
Resolved
Bounty
$15000.00
Submitted
Weakness
Information Disclosure