Description

The web application is based on Typo3 CMS. Typo3 Debug mode is enabled. Debug mode should be turned off in production environment, as it may lead to disclosure of sensitive information about the web application.

Remediation

Disable the debug mode

References

TYPO3: Debugging

TYPO3: Enable Debug Mode

Related Vulnerabilities

WPEngine _wpeprivate/config.json information disclosure

WordPress 5.5.x Multiple Vulnerabilities (5.5 - 5.5.10)

ReviveAdserver Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-7368)

JBoss HttpAdaptor JMXInvokerServlet

WordPress Plugin Import all XML, CSV & TXT into WordPress Arbitrary File Disclosure (3.7)

Severity

Low

Classification

CWE-200 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:L/SI:N/SA:N

Tags

Information Disclosure