Application Error Disclosure -sensitive data disclose
kumawatshailesh7 at gmail.com
Tue Nov 21 06:56:14 EST 2017
I am found some vulnerability in your site . i fount some data , email .
HTTP/1.1 200 OK
Last-Modified: Mon, 31 Mar 2014 02:55:02 GMT
Date: Tue, 21 Nov 2017 11:33:15 GMT
description= This page contains an error/warning message that may disclose
sensitive information like the location of the file that produced the
unhandled exception. This information can be used to launch further attacks
against the web application. The alert could be a false positive if the
error message is found inside a documentation page.
solution=Review the source code of this page. Implement custom error pages.
Consider implementing a mechanism to provide a unique error
reference/identifier to the client (browser) while logging the details on
the server side and not exposing them to the user.
* Phillip Akhzar pakhzar at gmail.com
Mon Mar 17 16:47:56 EDT 2014 *
- *Previous message: Hello
- *Next message: Hello
- *Messages sorted by: [ date ]
<https://pidgin.im/pipermail/support/2014-March/date.html#27744> [ thread ]
author ] <https://pidgin.im/pipermail/support/2014-March/author.html#27744>*
*Someone I could speak with? I'm curious about the business and
permissions it took.
> On Mar 17, 2014, at 12:33 PM, David Woolley <forums at david-woolley.me.uk <https://pidgin.im/cgi-bin/mailman/listinfo/support>> wrote:
>> On 17/03/14 18:41, Phillip Akhzar wrote:
>> Was wondering about the founders of this company and how difficult something like this was to develop.
> I don't believe they are incorporated.
>> for entrepreneurship.
> If they are incorporated, it will be as a not-for-profit.
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the security