Exposure of Sensitive Information Due to Incompatible Policies in ethibox/stacks


Reported on

Jul 8th 2021

✍️ Description

Please enter a description of the vulnerability.

1)Visit https://github.com/ethibox/stacks/blob/master/wordpress.yml#L47-L50 for the exposed database credentials

💥 Impact

This vulnerability is capable of database getting compromised.

We have contacted a member of the ethibox/stacks team and are waiting to hear back a year ago
ethibox/stacks maintainer confirmed that a fix has been merged on 571266 a year ago
The fix bounty has been dropped
to join this conversation