PHP Version disclosure

Description

Kayran has detected that at the time of sending the request, the server displays its version and other details about the technology of the server. Also called PHP Version disclosure.

An attacker could exploit known vulnerabilities of the same PHP Version if it was not updated.

Recommendation

To prevent this vulnerability from happening, remove the header that displays the version or display a generic message.

References

https://cwe.mitre.org/data/definitions/200.html

< Return to all Vulnerabilities

Exposing the GIT

Let’s start with defining the meaning of GIT. GIT – is an open-source system which we use as a tool to store data and information

Read More »

What is a CWE ?

Similar to the article written on CVEs, in this article we will answer the questions :What is CWE ? and, what is the difference between

Read More »