min read

Information Disclosure - Sensitive Information in URL

The request appeared to contain sensitive information leaked in the URL.

Summary

The request appeared to contain sensitive information leaked in the URL. It may violate PCI and most organizational compliance policies. You can configure the list of strings for this check to add or remove values specific to your environment.

Solution

Do not pass sensitive information in URIs.

References

https://owasp.org/www-community/vulnerabilities/Information_exposure_through_query_strings_in_url

Secure Your Startup. Today.

We make your startup secure and compliant by implementing and managing the security controls your customers require.

Get Started

Latest Articles

View All Articles

Navigating GDPR Compliance on AWS

How to secure your AWS environment in compliance with the GDPR?

Mitigations

min read

Plan Your Security Roadmap

Check out how other startups become secure and compliant.

Mitigations

min read

Server Leaks Information via 'X-Powered-By' HTTP Response Header Field(s)

The web/application server is leaking information via one or more “X-Powered-By” HTTP response headers.

Vulnerabilities

min read