WEB APPLICATION VULNERABILITIES Standard & Premium

Apache Server-Info Detected

Description

Apache /server-info displays information about your Apache configuration. If you are not using this feature, disable it.

Remediation

Disable this functionality if not required. Comment out the <Location /server-info> section from httpd.conf.

References

Apache Homepage

Related Vulnerabilities

WordPress Plugin Page Flip Image Gallery 'book_id' Parameter Remote File Disclosure (0.2.2)

WordPress Plugin RocketTheme RokBox Multiple Vulnerabilities (2.13)

WordPress Plugin Media Library Assistant Information Disclosure (3.00)

WordPress Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2011-3128)

WordPress Plugin MAC PHOTO GALLERY Arbitrary File Download (3.0)

Severity

Medium

Classification

CWE-200 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N

Tags

Configuration Information Disclosure