Description
Apache /server-info displays information about your Apache configuration. If you are not using this feature, disable it.
Remediation
Disable this functionality if not required. Comment out the <Location /server-info> section from httpd.conf.
References
Related Vulnerabilities
Unprotected phpMyAdmin interface
Web Cache Poisoning via Fat GET Request
PrestaShop Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2020-15081)
WordPress 4.5.x Multiple Vulnerabilities (4.5 - 4.5.15)
WordPress Plugin Simple Gmail Login Stack Trace Information Disclosure (1.1.3)