Description

The Pyramid DebugToolbar was found in the web application. Usage of DebugToolbar should be avoided in production and strictly configured in a development environment, as it discloses sensitive information about the web application

Remediation

Disable Pyramid DebugToolbar or restrict access to it

References

pyramid_debugtoolbar

Related Vulnerabilities

WordPress Plugin Wholesale Market for WooCommerce Arbitrary File Download (1.0.7)

Ruby on Rails Running in Development Mode

WordPress Plugin Stop User Enumeration User Enumeration (1.2.4)

WordPress Plugin MasterStudy LMS-for Online Courses and Education Information Disclosure (3.2.10)

Plone CMS Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2013-4194)

Severity

Medium

Classification

CWE-200 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

Tags

Configuration Information Disclosure