Sensitive information disclosure [HtUS]

Disclosed: 2023-02-24 18:37:12 By syarif07 To deptofdefense
High
Vulnerability Details
## Summary: Hi Team :) I found that the server status directory on your system is open, it displays server status and sensitive information by server ## Steps To Reproduce: [add details for how we can reproduce the issue] 1. visit: https://█████████/server-status/ ## Supporting Material/References: ███ * [attachment / reference] ## Impact sensitive information is clearly displayed, that is, server status, attackers can find sensitive information from the server (server logs)
Actions
View on HackerOne
Report Stats
  • Report ID: 1632104
  • State: Closed
  • Substate: resolved
  • Upvotes: 18
Share this report