Description
One or more files were found that contain database credentials used to connect to a WordPress database. This information could be sensitive.
This alert may be a false positive, manual confirmation is required.
Remediation
Remove these file(s) from your website or change its permissions to remove access.
References
Related Vulnerabilities
WordPress Plugin Cherry Services List Information Disclosure (1.4.1)
[Possible] Database Connection String Detected
WordPress Plugin Theme Editor Arbitrary File Download (2.5)
Unrestricted access to NGINX+ Upstream HTTP interface
WordPress Plugin Health Check & Troubleshooting Arbitrary File Disclosure (1.2.3)