Whoops error handler component detected

Description

The web application uses Whoops component to show information about errors. Such errors may disclosure of sensitive information about the web application.

Remediation

Don't show details of errors to users

References

whoops

Related Vulnerabilities

Joomla! Core 3.x.x Information Disclosure (3.8.0 - 3.9.13)

WordPress 5.7 Multiple Vulnerabilities (5.7)

Drupal Core 8.x.x Information Disclosure (8.0.0 - 8.7.14)

Tiki Wiki CMS: Remote Code Execution via Calendar Module

Unrestricted access to Kong Gateway API

Severity

Low

Classification

CWE-200 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:L/SI:N/SA:N

Description

Remediation

References

Related Vulnerabilities

Severity

Classification

Tags

Take action and discover your vulnerabilities