Description
One or more configuration files (e.g. Vagrantfile, Gemfile, Rakefile, ...) were found. These files may expose sensitive information that could help a malicious user to prepare more advanced attacks. It's recommended to remove or restrict access to this type of files from production systems.
Remediation
Remove or restrict access to all configuration files acessible from internet.
Related Vulnerabilities
WordPress Plugin Sell Downloads Arbitrary File Disclosure (1.0.1)
Joomla! Core Information Disclosure (1.5.0 - 3.8.1)
WordPress Plugin Duplicator-WordPress Migration Arbitrary File Download (1.3.26)
WordPress Plugin Google Drive for WordPress Information Disclosure (2.2)
WordPress Plugin Duplicator-WordPress Migration Arbitrary File Disclosure (0.3.0)