Description

FrontPage Extensions are enabled on this server.

Remediation

If you are not using this functionality is recommended to run IISLockDown in order to disable FrontPage extensions.

References

IIS Lockdown Tool

Related Vulnerabilities

Kentico Staging API Authentication Bypass

Roundcube security updates 0.8.6 and 0.7.3

Apache Tomcat examples directory vulnerabilities

WordPress Plugin Timetable and Event Schedule by MotoPress Information Disclosure (2.3.19)

Flask weak secret key

Severity

Low

Classification

CWE-16 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N

Tags

Configuration Information Disclosure