Summary by National Aeronautics and Space Administration (NASA) - Vulnerability Disclosure Program
We have removed the file AstroSoM.tar.gz, as it isn’t needed anymore and all the data inside the tar.gz file was available on the apod web site
Information Disclosure or 403 Bypass
Disclosed by bhautikXploit- Engagement National Aeronautics and Space Administration (NASA) - Vulnerability Disclosure Program
- Disclosed date about 1 year ago
- Priority P3 Bugcrowd's VRT priority rating
- Status Resolved This vulnerability has been accepted and fixed
Summary by bhautikXploit
Description:
Let's assume the vulnerable domain is abc.com and the endpoint is /xyz. During my reconnaissance of abc.com, I found the /xyz endpoint. Initially, when I tried to access this endpoint, I received a 403 Forbidden error, which indicated that the resource was restricted.
However, upon further exploration, I discovered a .zip file associated with the same endpoint. When I accessed this .zip file and extracted its contents, I was able to access the entire directory for the /xyz endpoint.
Impact:
Unauthorised Access: The ability to access a .zip file containing all files from the /xyz directory indicates a possible lack of proper access control or authentication mechanisms for sensitive directories.
Data Exposure: If the ZIP file contains sensitive or private files, this could lead to unauthorised data exposure. The attacker can download, extract, and review these files for further exploitation or analysis.