Description
WebDAV is enabled on this server and this directory has write permissions enabled. Acunetix was able to create a test file within this directory using the PUT method. The PUT method is a part of the WebDAV standard for remote content editing. A poorly configured Web server can mistakenly provide remote access to the PUT method without requiring any form of login.
Remediation
Restrict access for method PUT or if it's not being used, consider disabling it.
References
Related Vulnerabilities
WordPress Plugin Spectra-WordPress Gutenberg Blocks Security Bypass (1.14.7)
WordPress 4.5.x Multiple Vulnerabilities (4.5 - 4.5.2)
WordPress Plugin Contact Form 7 Security Bypass (3.7.1)
Plone CMS Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-4196)
WordPress Permissions, Privileges, and Access Controls Vulnerability (CVE-2007-0541)