Readable .htaccess file

  • CWE 425
  • WASC 34

This directory contains an .htaccess file that is readable. This may indicate a server misconfiguration. htaccess files are designed to be parsed by web server and should not be directly accessible. These files could contain sensitive information that could help an attacker to conduct further attacks.


Restrict access to the .htaccess file by adjusting the web server configuration.