Webalizer script

  • CWE 425
  • WASC 34

The Webalizer is a fast, free web server log file analysis program. It produces highly detailed, easily configurable usage reports in HTML format, for viewing with a standard web browser.

It's recommended to restrict access to this directory as it may contain sensitive information (test scripts, administrative interfaces, session tokens sent via GET, etc). This kind of information may help an attacker to learn more about the structure of your website and can be used to conduct further attacks.


Restrict (or password protect) the access to directory or make it accessible only on the local interface.