.idea Project Directory


During the scan, Kayran managed to find the “.idea Project Directory” Vulnerability.
The “.idea” directory contains configuration files (of .XML type), these files may lead the attacker to your database and credentials, it can contain sensitive data such as : the location of your Windows directory, your saved personal settings, and many more.
These files should not exist on the production system.

These files might contain sensitive information which may assist a certain attacker to perform more advanced attacks, harming your web assets in a much greater extent.


CVSS Version 3.x – 5.3 Medium


Remove these files from any production related systems, or, restrict the access to this folder so that only authorized personal have access to it.



< Return to all Vulnerabilities

Man-In-The-Middle Attacks

Do you know these people who just push themselves into conversations?That’s Man-In-The-Middle Attacks. And from a wider angle, Man-In-The-Middle Attacks, or MITM, are built around

Read More »


How to preform SQLI TO RCE? One of the most interesting and important things about any site is the database. So, it’s important to protect

Read More »