1cardalepark.co.uk

Raw JWT token exposed in DNS

$ dig TXT 1cardalepark.co.uk

;; QUESTION SECTION:

;1cardalepark.co.uk. IN TXT

;; ANSWER SECTION:

1cardalepark.co.uk. 3600 IN TXT "eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkb21haW4iOiIxY2FyZGFsZXBhcmsuY28udWsiLCJleHAiOjE3NTIyNzg0MDB9.[SIGNATURE_REDACTED]"

What Happened

A raw JSON Web Token (JWT) starting with the telltale `eyJ0eXAiOiJKV1Qi...` was found in the TXT records. Anyone can base64-decode the payload to read internal tenant IDs, expiration dates, and other claims. No secret needed.

Full TXT Record Value

eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkb21haW4iOiIxY2FyZGFsZXBhcmsuY28udWsiLCJleHAiOjE3NTIyNzg0MDB9.[SIGNATURE_REDACTED]