Description
This alert may be a false positive, manual confirmation is required.
The response contains one or more SSN (social security numbers). It was not possible to validate if these are real social security numbers. You should verify whether the numbers identified are actually valid social security numbers.
Remediation
It's recommended that sensitive data such as credit card numbers or social security numbers should not be exposed on your website.
References
Related Vulnerabilities
WordPress Plugin Order Export & Order Import for WooCommerce Information Disclosure (1.0.8)
WordPress Plugin Simple Ads Manager Multiple Vulnerabilities (2.6.96)
Unrestricted access to NGINX+ Upstream HTTP interface
TCExam Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2020-5743)