Details
Alert Id 40032
Alert Type Active Scan Rule
Status release
Risk Medium
CWE 215
WASC 13

Summary

htaccess files can be used to alter the configuration of the Apache Web Server software to enable/disable additional functionality and features that the Apache Web Server software has to offer.

Solution

Ensure the .htaccess file is not accessible.

References

Code

org/zaproxy/zap/extension/ascanrules/HtAccessScanRule.java