Description

One or more strings matching an internal IPv4 address were found. These IPv4 addresses may disclose information about the IP addressing scheme of the internal network. This information can be used to conduct further attacks.

The significance of this finding should be confirmed manually.

Remediation

Prevent this information from being displayed to the user.

References

Internal IP Address Disclosure | Invicti

Related Vulnerabilities

Yii2 debug toolkit

Possible database backup

WordPress 1.5.1.2 Multiple Vulnerabilities (1.0 - 1.5.1.2)

Spring Boot Actuator v2

WordPress Plugin Groundhogg-Marketing Automation & CRM for WordPress Arbitrary File Disclosure (2.0.9.4)

Severity

Low

Classification

CWE-200 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

Tags

Information Disclosure Internal IP Disclosure