Configuration File
- WASC 15
- CWE 425
- WASC 34
A configuration file was found in this directory. This file may expose sensitive information that could help a malicious user to prepare more advanced attacks.
Remediation
Restrict access to configuration file from internet.
References
Go Back to List
Search Vulnerability
You may also see
- Configuration File (Wordpress)
- Configuration File (Rails Database)
- Configuration File (Ruby Gem)
- Configuration File (Rake)
- Configuration File (Vagrant)
- Configuration File (Laravel)
- Configuration File (Travis CI)
- Configuration File (Grunt)
- Readable .htaccess file
- apc.php page
- Webalizer script
- phpinfo page
- Apache perl-status Enabled
- Apache server-info Enabled
- Apache server-status Enabled
- JetBrains .idea project directory
- AWStats script
- elmah.axd Detected
- Core dump checker PHP script
- trace.axd Detected
- .DS_Store file
- Macromedia Dreamweaver database scripts
- Help file
- robots.txt Detected
- Sitemap Detected
- crossdomain.xml Detected
- Silverlight Client Access Policy
- Laravel log file
- Code Repository
- Configuration File
- Administration page
- Predictable Resource Location
- Code Repository
- Configuration File
- Administration page