RedPacket Security

InfoSec News & Tutorials

Uncategorized 

Bagisto: Insecure installation in sub-directories

admin , , , , , , , , ,
Click the icon to Follow me:- twitterTelegramRedditDiscord

Posted by devsecweb— via Fulldisclosure on Sep 01

The world's most advanced processor in the desktop PC gaming segment Can deliver ultra-fast 100+ FPS performance in the world's most popular games 6 cores and 12 processing threads bundled with the quiet AMD wraith stealth cooler max temps 95°C 4 2 G...
AMD Ryzen 5 3600 6-Core, 12-Thread Unlocked Desktop Processor with Wraith Stealth Cooler $199.99
The world's most advanced processor in the desktop PC gaming segment Can deliver ultra-fast 100+ FPS performance in the world's most popular games 6 cores and 12 processing threads bundled with the quiet AMD wraith stealth cooler max temps 95°C 4 2 G... read more
(as of January 26, 2021 - More infoProduct prices and availability are accurate as of the date/time indicated and are subject to change. Any price and availability information displayed on [relevant Amazon Site(s), as applicable] at the time of purchase will apply to the purchase of this product.)
AMD's fastest 6 core processor for mainstream desktop, with 12 processing threads Can deliver elite 100+ FPS performance in the world's most popular games Bundled with the quiet, capable AMD Wraith Stealth cooler 4.6 GHz Max Boost, unlocked for overc...
AMD Ryzen 5 5600X 6-core, 12-Thread Unlocked Desktop Processor with Wraith Stealth Cooler $389.96 $384.99
AMD's fastest 6 core processor for mainstream desktop, with 12 processing threads Can deliver elite 100+ FPS performance in the world's most popular games Bundled with the quiet, capable AMD Wraith Stealth cooler 4.6 GHz Max Boost, unlocked for overc... read more
(as of January 26, 2021 - More infoProduct prices and availability are accurate as of the date/time indicated and are subject to change. Any price and availability information displayed on [relevant Amazon Site(s), as applicable] at the time of purchase will apply to the purchase of this product.)
AMD's fastest 8 core processor for mainstream desktop, with 16 procesing threads Can deliver elite 100+ FPS performance in the world's most popular games Cooler not included, high-performance cooler recommended 4.7 GHz Max Boost, unlocked for overclo...
AMD Ryzen 7 5800X 8-core, 16-Thread Unlocked Desktop Processor Without Cooler Black, XX-Large $537.99 $519.98
AMD's fastest 8 core processor for mainstream desktop, with 16 procesing threads Can deliver elite 100+ FPS performance in the world's most popular games Cooler not included, high-performance cooler recommended 4.7 GHz Max Boost, unlocked for overclo... read more
(as of January 26, 2021 - More infoProduct prices and availability are accurate as of the date/time indicated and are subject to change. Any price and availability information displayed on [relevant Amazon Site(s), as applicable] at the time of purchase will apply to the purchase of this product.)

Vendor:
Bagisto (https://bagisto.com/)
Affected version:
All
Introduction:
Bagisto is an open source shop system based on PHP and Laravel framework
Vulnerability description:
Bagisto can be installed in sub-directories below the document root exposing the Laravel .env file which includes
database and e-mail server credentials.

Proof:
There have been observed installations in the wild exposing the .env file like…

If you like the site, please consider joining the telegram channel or supporting us on Patreon using the button below.

You may be interested in...

  • Safety Technology International, Inc. STI-6400 Exit Stopper Multifunction Door Alarm, Helps Prevent Unauthorized Exits or Entries Through Emergency Doors
  • DoorBox - Weatherproof Package Delivery Box (US & Internationally Patented) Steel Cable, Anti-Theft Alarm, Secure Lock to Receive Multiple Deliveries (Ultra-Premium(Alarm Included), Large Blue)
  • ZOSI 8CH 1080P Security Camera System Outdoor with 1TB Hard Drive,H.265+ 8Channel 1080P CCTV Recorder 8pcs HD 1920TVL Home Surveillance Cameras with 120ft Night Vision Easy Remote Access Motion Alert
  • Safety Technology International, Inc. STI-6400 Exit Stopper Multifunction Door Alarm, Helps Prevent Unauthorized Exits or Entries Through Emergency Doors (Four Pack)
  • Swann 4 Channel 4 Camera Security System, Wired Surveillance 1080p HD DVR 1TB HDD, Audio Capture, Weatherproof, Color Night Vision, Heat & Motion Sensing Warning Light, Alexa + Google, SWDVK-445804WL

    • Patreon

    Original Source

    You May Also Like

    osint

    Facebook Data Breach: API Security Risks

    admin
    sas at home 2020 intro 747x400 1

    [email protected] is back this fall

    admin
    KSB 2020 intro 990x400 5

    APT annual review: What the world’s threat actors got up to in 2020

    admin