WEB APPLICATION VULNERABILITIES Standard & Premium

Web server default welcome page

Description

This web server has a default welcome page. If you are not using this web server, it should be disabled because it may pose a security threat.

Remediation

If this server is not used, it is recommended to disable it.

References

Web Server Default Welcome Page

Related Vulnerabilities

MySQL Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2006-0369)

WordPress Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-5610)

WordPress Plugin Advanced File Manager Information Disclosure (5.2.4)

Oracle applications logs publicy available

WordPress 3.8.x Multiple Vulnerabilities (3.8 - 3.8.14)

Severity

Info

Classification

CWE-200 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:N/SC:N/SI:N/SA:N

Tags

Configuration