1
 min read

Server Leaks Information via 'X-Powered-By' HTTP Response Header Field(s)

The web/application server is leaking information via one or more “X-Powered-By” HTTP response headers.

Summary

The web/application server is leaking information via one or more “X-Powered-By” HTTP response headers. Access to such information may facilitate attackers identifying other frameworks/components your web application is reliant upon and the vulnerabilities such components may be subject to.

Risk

Low

Solution

Ensure that your web server, application server, load balancer, etc. is configured to suppress 'X-Powered-By' headers.

References

Managed Cybersecurity Services tailored to your Startup

We make your startup secure and compliant by implementing and managing the security controls your customers deserve.

Thank you for registering!
Oops! Something went wrong.