Description

This ColdFusion web application is running with Robust Exception turned on. The Robust Exception feature displays detailed information about exceptions and can include the script locations, stack traces, SQL statements, etc.

Remediation

Disable Robust Exception feature in the ColdFusion Administrator.

References

Configuring debugging in the ColdFusion Administrator

Related Vulnerabilities

WordPress Plugin Fusion Engage Local File Disclosure (1.0.5)

WordPress Plugin User Profile Builder-Beautiful User Registration Forms, User Profiles & User Role Editor Information Disclosure (3.9.0)

WordPress Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2011-3126)

SharePoint Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2011-1892)

WordPress Plugin Import all XML, CSV & TXT into WordPress Arbitrary File Disclosure (3.7)

Severity

Medium

Classification

CWE-200 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

Tags

Information Disclosure