LOGIN
CONTACT SALES
LOGIN
CONTACT SALES

Possible sensitive files

Description

During the scan, Cytrix managed to find some possible sensitive exposed files. That allows an attacker to view and even and download these files.

An attacker could access these sensitive files and use the information they contain in order to perform reconnaissance actions against the website’s infrastructure and sensitive data that the website might hold.

By revealing this info (Information Disclosure) you will make an attacker’s job easy to see what versions of plugins and components are installed. That will assist him in finding attack vectors more easily.

Recommendation

To prevent this vulnerability, make sure to restrict access to these files. Doing so will assure that users without permission can’t access them, or, you can remove them completely from the website.

References

https://cwe.mitre.org/data/definitions/200.html

< Return to all Vulnerabilities

Request a Demo

Using VPN

What is a VPN? Why should someone be using VPN? Which Problems does is solve? and what is the advantages and disadvantages of it? Let’s

Read More »

APT vs. ATP

In this article we will talk about APT vs. ATP. In other words, Advanced Persistent Threat and Advanced Threat Protection and the context between these

Read More »

What is Cytrix

Cytrix scanner is helping all businesses, both SMBs and enterprises, to test their online assets and products for over 30,000+ vulnerabilities.Cytrix’s mission is to make

Read More »
Facebook Linkedin

Company

Resources

Docs

Latest posts

PING US
Facebook Linkedin