| Details | |
|---|---|
| Alert ID | 200016-2 |
| Alert Type | Tool |
| Status | alpha |
| Risk | Low |
| CWE | 200 |
| WASC | |
| Technologies Targeted | All |
| Tags |
CWE-200 OWASP_2021_A05 TOOL_PTK |
Summary
Detects internal hostnames/IPs and environment hints (staging/dev/local) disclosed in observed responses.
Generated by OWASP PTK DAST Module
Solution
• Remove internal hostnames/IPs from client responses. • Ensure staging/dev configuration is not exposed to production clients.Other Info
References
- https://owasp.org/Top10/2025/A02_2025-Security_Misconfiguration/
- https://cwe.mitre.org/data/definitions/200.html