Description
Apache /server-status displays information about your Apache status. If you are not using this feature, disable it.
Remediation
Disable this functionality if not required. Comment out the <Location /server-status> section from httpd.conf.
References
Related Vulnerabilities
SAP Knowledge Management and Collaboration (KMC) incorrect permissions
XWiki Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2023-29517)
WordPress Plugin Google Drive for WordPress Information Disclosure (2.2)
WordPress Plugin Video Embed & Thumbnail Generator Information Disclosure (1.1)