ledger-service-44

service · AWS · eu-west-1 · staging

Internet-exposed

Posture

critical

2

high

4

medium

6

low

4

Ownership

Applicationledger

TeamCheckout

OwnerJames Ortiz

LanguageJava

Criticality

tier-3

Findings (17)

SSRF in webhook fetcher

SSRF in webhook fetcher

Hardcoded AWS access key in source

S3 bucket publicly readable

Log4Shell vulnerable dependency

S3 bucket publicly readable

TruffleHogSecrets

Dependency confusion risk on internal package

SQL Injection in user-input handler

SQL Injection in user-input handler

Cloudflare WAFWAF

S3 bucket publicly readable

GitleaksSecrets

Hardcoded AWS access key in source

Unencrypted RDS snapshot

Path traversal in file download endpoint

Unencrypted RDS snapshot