search

CPChain / chain

Mirror of https://bitbucket.org/cpchain/chain
GNU General Public License v3.0
51 stars 10 forks source link

website bug report #111

Closed Dgirlwhohacks closed 3 years ago

Dgirlwhohacks commented 3 years ago

Hey Sec Team I'm Security researcher

I have found Information disclosure in one of your domains where /metrics endpoint is enabled This information may help attackers understand more things about the target application which may help in further investigation and exploitation. Vuln urls: https://kube.cpchain.io/metrics

Fix it ASAP 

Best - Divya Singh

Dgirlwhohacks commented 3 years ago

cpchain

cpchainbot commented 3 years ago

Thanks for your help, we will limit the IP.

Dgirlwhohacks commented 3 years ago

Can I get any kind of token of appreciation for my work if possible here

On Thu, 15 Apr, 2021, 7:16 am cpchainbot, @.***> wrote:

Closed #111 https://github.com/CPChain/chain/issues/111.

— You are receiving this because you authored the thread. Reply to this email directly, view it on GitHub https://github.com/CPChain/chain/issues/111#event-4596636054, or unsubscribe https://github.com/notifications/unsubscribe-auth/ARJ2MMDPE5P6CF7TUQA7ZUTTIZAOVANCNFSM42X5HYYQ .