don't leak server version of grtp.co in error pages
Low
Vulnerability Details
Open the latest Firefox web browser or google chrome.
Navigate to the following URL:
https://grtp.co/%pa
Note that the Invalid URL Encoded (%pa) has fired. after execution,It gives 404 error with server information and its version.
I’ve tested this in the latest Firefox and Chrome.
Actions
View on HackerOneReport Stats
- Report ID: 136720
- State: Closed
- Substate: resolved
- Upvotes: 1