Lowe’s Market Exposes Sensitive Data and Credentials via Publicly Accessible Environment File
Lowe’s Market Exposes Sensitive Data and Credentials via Publicly Accessible Environment File
20 March 2023
Researchers found a publicly accessible environment file (.env) hosted on the Lowe’s Market website. Public access to the file posed a risk to the security of the company’s systems, as it was leaking sensitive data and numerous credentials.