Reverb.com: Api token exposed in Reverb.com's public github repository

2018-05-16T06:40:34
ID H1:352623
Type hackerone
Reporter albatraoz
Modified 2018-05-16T20:20:19

Description

An access token of a user account was available in a public github repo. The token was tied to an experimental project, and the account was only used for that project, so no sensitive information was able to be obtained.