Description
When you use static HTML pages (for example, Default.htm), a Content-Location header is added to the response. By default, in Internet Information Server (IIS), the Content-Location references the IP address of the server instead of the Fully Qualified Domain Name (FQDN) or Hostname.
Remediation
Check References for details on how to fix this problem.
References
Related Vulnerabilities
WordPress Plugin Order Export & Order Import for WooCommerce Information Disclosure (1.0.8)
WordPress 5.9.x Multiple Vulnerabilities (5.9 - 5.9.7)
WordPress 4.3.x Multiple Vulnerabilities (4.3 - 4.3.29)
WordPress 4.4.x Multiple Vulnerabilities (4.4 - 4.4.16)
WordPress Plugin Advanced Contact form 7 DB Information Disclosure (1.6.2)