Description

The Yii2 debug toolkit was found in the web application. Usage of the debug toolkit should be avoided in production and strictly configured in a development environment, as the toolkit discloses sensitive information about the web application (e.g. database structure, configuration values)

Remediation

Disable the debug toolkit or restrict access to proper IP addresses only

References

Related Vulnerabilities