Vulnerability Name
Classifications
Severity
Exception Report Disclosure (Tomcat)
PCI v3.2-6.5.5, CAPEC-214, CWE-248, HIPAA-164.306(a), 164.308(a), ISO27001-A.18.1.3, WASC-14, OWASP 2013-A5, OWASP 2017-A6
Low
Insecure Frame (External)
CWE-16, ISO27001-A.14.1.2, WASC-15, OWASP 2017-A6
Low
Laravel Debug Mode Enabled
PCI v3.2-6.5.5, CAPEC-214, CWE-16, ISO27001-A.14.1.2, WASC-14, OWASP 2013-A5, OWASP 2017-A6
Low
Laravel Environment Configuration File Detected
CWE-285, ISO27001-A.9.4.1, WASC-15, OWASP 2013-A5, OWASP 2017-A6
Low
Misconfigured Access-Control-Allow-Origin Header
PCI v3.2-6.5.8, CWE-16, ISO27001-A.14.1.2, WASC-15, OWASP 2013-A5, OWASP 2017-A6
Low
Misconfigured Frame
CWE-16, ISO27001-A.14.1.2, WASC-15, OWASP 2017-A6
Low
Missing Content-Type Header
PCI v3.2-6.5.7, CWE-16, ISO27001-A.14.1.2, WASC-15, OWASP 2013-A5, OWASP 2017-A6
Low
Missing X-Content-Type-Options Header
CWE-16, ISO27001-A.14.1.2, WASC-15, OWASP 2013-A5, OWASP 2017-A6
Low
Out-of-date Component ({applicationName})
CAPEC-170, CWE-205, HIPAA-164.306(a), 164.308(a), ISO27001-A.18.1.3, WASC-13, OWASP 2013-A5, OWASP 2017-A6
Low
PHP allow_url_fopen Is Enabled
CWE-16, OWASP 2013-A5, OWASP 2017-A6
Low
PHP allow_url_include Is Enabled
CWE-16, OWASP 2013-A5, OWASP 2017-A6
Low
PHP display_errors Is Enabled
CWE-211, OWASP 2013-A5, OWASP 2017-A6
Low