Full Path Disclosure

Risk:
Low

Type:
Passive

CWE:
CWE-209

Summary: The full path of files which might be sensitive has been exposed to the client.

Solution: Disable directory browsing in your web server. Refer to the web server documentation.

References: https://owasp.org/www-community/attacks/Full_Path_Disclosure

Free online web security scanner

Don't show website scan report rating on the leaderboard