Type
Research
Actors
Pub. date
February 23, 2023
Initial access
Software misconfig
Impact
Resp. disclosure
References
https://cybernews.com/privacy/saudi-social-media-app-leaks-user-info/
Status
Stub
Last edited
Jun 2, 2024 8:02 AM
Security researchers discovered a database containing sensitive data operated by Fayvo, a Saudi Arabia-based social media app. The server hosting the database also leaked its staging environment file, which led to another unprotected environment file with MySQL credentials, AWS access keys, S3 bucket names, and more.