Directory Listing

Description

During the scan, Kayran managed to find the Directory Listing vulnerability.
Directory listing could allow a potential attacker to see and navigate through folders and files that belongs to the system, they might hold sensitive information, and, attackers can use this information to initiate further attacks.

This allows unauthorized personal to see files located in the directory, and, could potentially gain access to files that may disclose sensitive information.

Recommendation

Make sure to block\restrict access to this directory and hide any records related to the files it contains.

References

https://cwe.mitre.org/data/definitions/548.html

< Return to all Vulnerabilities

SQLI to RCE

How to preform SQLI TO RCE? One of the most interesting and important things about any site is the database. So, it’s important to protect

Read More »

Passwords 101

Unlike basketballs, “passwords” are things we don’t want to be passed around, especially in a society built around the idea that “mystery” is appealing. We

Read More »

Exposing the GIT

Let’s start with defining the meaning of GIT. GIT – is an open-source system which we use as a tool to store data and information

Read More »