Apache stronghold-info enabled

Description

Apache /stronghold-info displays information about your Apache configuration. This URL is enabled when you are using Apache Stronghold. If you are not using this feature, disable it.

Remediation

Disable this functionality if not required.

References

Apache Homepage

Related Vulnerabilities

WordPress 4.5.x Multiple Vulnerabilities (4.5 - 4.5.29)

WordPress 4.4.x Multiple Vulnerabilities (4.4 - 4.4.3)

WordPress REST API User Enumeration

WordPress Plugin History Collection Arbitrary File Download (1.1.1)

Laravel debug mode enabled (AcuSensor)

Severity

Low

Classification

CWE-200 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N