- The ASP.NET application trace is enabled. This file contains sensitive information such as Session ID values and physical path to the requested file.
- Remove this file from your website or change its permissions to remove access.
- Apache Tomcat version older than 6.0.36
- WordPress Plugin Gallery by BestWebSoft Arbitrary File Disclosure (3.8.3)
- WordPress Plugin WP Online Store Local File Include and Multiple File Disclosure Vulnerabilities (1.3.1)
- WordPress Plugin Direct Download for Woocommerce Arbitrary File Download (1.15)
- Grails database console