Description

One or more pages were found to contain an ColdFusion error message that discloses the installation path and other potentially sensitive data.

Remediation

Review the source code for the affected pages.

References

OWASP - Information Disclosure

Adobe ColdFusion - Lockdown Guide

Related Vulnerabilities

Joomla! Core 1.5.x Information Disclosure (1.5.0 - 1.5.15)

WordPress Plugin WP-RecentComments Information Disclosure (2.2.7)

Ruby on Rails Running in Development Mode

WordPress 5.4.x Multiple Vulnerabilities (5.4 - 5.4.13)

WordPress 4.4.x Multiple Vulnerabilities (4.4 - 4.4.30)

Severity

Low

Classification

CWE-200 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

Tags

Information Disclosure