Description
Apache Axis2 is installed on this application server. By accessing a specific URL (/services/listServices) it's possible to list all the available web services deployed in this server.
Remediation
If you don't want these services to be publicly available you need to restrict access to the /services/listServices URL.
References
Related Vulnerabilities
Generic Email Address Disclosure
WordPress Plugin WooCommerce Information Disclosure (4.5.2)
WordPress Plugin Timetable and Event Schedule by MotoPress Information Disclosure (2.3.19)
phpMyAdmin Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-5730)
phpMyAdmin Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2022-0813)