.htaccess File Readable

Description

During the scan, Kayran managed to find the “.htaccess File Readable” Vulnerability.
That means that there is a folder that contains a “.htaccess” file which can be read. These file are analyzed by a web based server and should not be readable to all since the file contains sensitive information that can assist an attacker in performing malicious actions.

If an attacker, or any other user can access this file, that means that possible sensitive information can be seen by them. That will help them in carrying out attacks on your Web Assets.

Recommendation

Remove these files from production related systems. You can also restrict access to files of this type by customizing the web server configuration accordingly.

References

https://kayran.io/blog/blog/information-disclosure-self-revealing-our-secrets/

https://cwe.mitre.org/data/definitions/443.html

< Return to all Vulnerabilities

The Cloud

I’m pretty sure there isn’t a single adult in the world who hasn’t at least heard of The Cloud. Explaining “The Cloud” in 2022 may

Read More »

What is Kayran

Kayran scanner is helping all businesses, both SMBs and enterprises, to test their online assets and products for over 30,000+ vulnerabilities.Kayran’s mission is to make

Read More »

Servers 101

Let’s have a “quick” Servers 101 Course. Courtesy of Kayran! If you’ve been on the internet for over an hour, you probably already heard of

Read More »