Multiple Choices Enabled
- WASC 14
The HTTP 300 Multiple Choices redirect status response code indicates that the request has more than one possible responses. This could be used for locating and obtaining access to possible hidden resources.
Remediation
Change your server configuration file to disable spelling module. A recommended configuration for the requested directory should be in the following format:
<Directory /{YOUR DIRECTORY}>
CheckSpelling Off
</Directory>
Go Back to List
Search Vulnerability
You may also see
- Long Redirect Response
- Error Message
- Stack Trace
- Internal Path
- Not Secure Cookie
- Not Http-Only Cookie
- Sensitive Data in Query String
- Sensitive Data over HTTP
- Server Error
- Source Code Disclosure
- Information Leakage
- Web Backdoor
- Database Connection String
- Autocomplete Enabled
- Undefined Content-Type Header
- Missing X-Frame-Options Header
- Mixed Content
- Insecure iFrame
- XPath Injection
- Basic Authentication over HTTP
- Forbidden Resource
- Multiple Choices Enabled
- Apache MultiViews Enabled