Description

The PHP Debug Bar was found in the web application. Usage of the PHP Debug Bar should be avoided in production and strictly configured in a development environment, as it discloses sensitive information about the web application

Remediation

Disable the PHP Debug Bar or restrict access to it

References

PHP Debug Bar

Related Vulnerabilities

ColdFusion Request Debugging information disclosure

Tracy debugging tool enabled

WordPress 3.1.2 Multiple Vulnerabilities (3.0.1 - 3.1.2)

WordPress 4.7.x Multiple Vulnerabilities (4.7 - 4.7.24)

JBoss ServerInfo MBean

Severity

Medium

Classification

CWE-200 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:L/SI:N/SA:N

Tags

Information Disclosure