Description

This web server has a default welcome page. If you are not using this web server, it should be disabled because it may pose a security threat.

Remediation

If this server is not used, it is recommended to disable it.

References

Web Server Default Welcome Page

Related Vulnerabilities

No Script Block Detected with the Hash Value Declared in Content Security Policy (CSP)

Unrestricted access to MLflow

WordPress Plugin W3 Total Cache Multiple Vulnerabilities (0.9.4.1)

MediaWiki Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2020-15005)

Apache perl-status enabled

Severity

Info

Classification

CWE-200 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:N/SC:N/SI:N/SA:N

Tags

Configuration