Description
This Django web application is running with debug mode turned on (DEBUG = True ). One of the main features of debug mode is the display of detailed error pages. If your app raises an exception when DEBUG is True, Django will display a detailed traceback, including a lot of metadata about your environment, such as all the currently defined Django settings (from settings.py).
Remediation
Never deploy a site into production with DEBUG turned on. To disable debug mode, set DEBUG = False in your Django settings file.
References
Related Vulnerabilities
Oracle Reports Services RWServlet environment variables disclosure
WordPress 5.7.x Multiple Vulnerabilities (5.7 - 5.7.9)
Plone CMS Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2012-5508)
Atlassian Confluence information disclosure
WordPress Plugin User Meta Manager Information Disclosure (3.4.7)