Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
open-irs .env Exposure
Vulnerability Description
open-irs is an issue response robot that reponds to issues in the installed repository. The `.env` file was accidentally uploaded when working with git actions. This problem is fixed in 1.0.1. Discontinuing all sensitive keys and turning into secrets.
CVSS Information
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H
Vulnerability Type
信息暴露
Vulnerability Title
open-irs 信息泄露漏洞
Vulnerability Description
Degamisu open-irs是日本Degamisu公司的一个问题响应机器人,用于响应已安装存储库中的问题。 open-irs 存在信息泄露漏洞,该漏洞源于使用 git 操作时意外上传了 .env 文件。
CVSS Information
N/A
Vulnerability Type
N/A