edit-icon download-icon

[Vulnerability notice] git configuration file leak vulnerability

Last Updated: Nov 14, 2017


Git is a version control system for tracking changes in computer files and coordinating work on those files among multiple people.

The .git folder containing git information is stored at the code root directory. Attackers may traverse the website directory, attempting to locate the .git folder and obtain sensitive information from it.


Remove the .git directory from the online code without impacting code execution.

Note: To avoid data loss, make a backup before upgrading, or create a hard disk snapshot for ECS.

Thank you! We've received your feedback.