Description

The web application is based on Typo3 CMS. Typo3 Debug mode is enabled. Debug mode should be turned off in production environment, as it may lead to disclosure of sensitive information about the web application.

Remediation

Disable the debug mode

References

TYPO3: Debugging

TYPO3: Enable Debug Mode

Related Vulnerabilities

WordPress Plugin PICA Photo Gallery 'imgname' Parameter Information Disclosure (1.0)

XML External Entity Injection via external file

Web application default/weak credentials

WordPress Plugin BuddyPress Information Disclosure (5.1.1)

Stack Trace Disclosure (Laravel)

Severity

Low

Classification

CWE-200 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:L/SI:N/SA:N

Tags

Information Disclosure