Closed Bug 1855370 Opened 2 years ago Closed 2 years ago

drectory listing enabled lead to disclose sensitive file

Categories

(Websites :: Other, defect)

Product:
Websites
Component:
Other
Type:
defect

Tracking

(Not tracked)

Status:
RESOLVED INVALID

People

(Reporter: bugkabeta2, Unassigned)

Details

User Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Safari/537.36

Steps to reproduce:

step1 go to google and search for this ip https://192.3.85.51/ , you will see there is a directory name pub when you open that directory there is lot of information leaking , and information is not so old

Actual results:

https://192.3.85.51/

Expected results:

this ip should be patched so that attacker cannot use this info to harma your company

Hello,

Thank you for your report.

192.3.85.51 points to archive.mozilla.org, where we host our open source projects. Everything there is intentionally public.

Thanks,
Frida

Group: websites-security
Status: UNCONFIRMED → RESOLVED
Closed: 2 years ago
Resolution: --- → INVALID
You need to log in before you can comment on or make changes to this bug.