Obtaining the source code of server-side scripts grants the attacker deeper knowledge of the logic behind the web application, how the application handles requests and their parameters, the structure of the database, vulnerabilities in the code and source code comments.

Review the cause of the code disclosure and prevent it from happening.

• Information Exposure Through Source Code
• CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N