Stack Trace Disclosure (CakePHP Framework)
Severity:
Low
Summary
Invicti identified a stack trace disclosure (CakePHP Framework) in the target web server's HTTP response.
Impact
An attacker can obtain information such as:
- CakePHP Framework version.
- Physical file path of CakePHP Framework files.
- Information about the generated exception and possibly source code, SQL queries, etc.
Remediation
Configure your application not to provide detailed error pages in production environments. Save all information regarding the error to a backend storage, such as a log or a text file, and show a friendly custom error page to the user.
Required Skills for Successful Exploitation
Actions To Take
Classifications
Vulnerability Index
You can search and find all vulnerabilities
Select Category
Select Vulnerability
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Select Vulnerability
Featured resources
Build your resistance to threats. And save hundreds of hours each month.
