Timestamp Disclosure - Unix

Docs > Alerts

Details
Alert ID	10096
Alert Type	Passive
Status	release
Risk	Low
CWE	200
WASC	13
Technologies Targeted	All
Tags	CWE-200 OWASP_2017_A03 OWASP_2021_A01
More Info	Scan Rule Help

Summary

A timestamp was disclosed by the application/web server - Unix

Solution

Manually confirm that the timestamp data is not sensitive, and that the data cannot be aggregated to disclose exploitable patterns.

Other Info

1704114087, which evaluates to: 1970-01-20 17:21:54

References

https://cwe.mitre.org/data/definitions/200.html

Code

org/zaproxy/zap/extension/pscanrules/TimestampDisclosureScanRule.java