Vulnerabilities
1
 min read

In Page Banner Information Leak

Preventing Information Leakage (server version banner).

Summary

The server returned a version banner string in the response content. Such information leaks may allow attackers to further target specific issues impacting the product and version in use.

Risk

Medium

Solution

Configure the server to prevent such information leaks. For example: Under Tomcat, this is done via the 'server' directive and implementation of custom error pages. Under Apache, this is done via the 'ServerSignature' and 'ServerTokens' directives.

References

Let’s check and protect your website from hackers

Run our expert website security checkup and get your tailored security recommendations to protect your website.

Thank you for registering
Oops! Something went wrong.

Latest Articles

View All Articles

Cross-Domain JavaScript Source File Inclusion

The page includes one or more script files from a third-party domain.

Vulnerabilities
2
 min read

Incomplete or No Cache-control Header Set

The cache-control header has not been set properly or is missing, allowing the browser and proxies to cache content.

Vulnerabilities
1
 min read

Cookie Without Secure Flag

CWE-614: Sensitive Cookie in HTTPS Session Without 'Secure' Attribute.

Vulnerabilities
1
 min read