Directory Browsing

Type: Active Scan

Risk: Medium

Description

It is possible to view the directory listing. Directory listing may reveal hidden scripts, include files, backup source files, etc. which can be accessed to read sensitive information.

Solution

Disable directory browsing. If this is required, make sure the listed files does not induce risks.

References

CWE: 548

WASC: 48

Code

Last updated: 2020-07-20 08:53:37.296Z