Groups keyboard shortcuts have been updated
Dismiss
See shortcuts
Hidden File Found - Medium
24 views
Skip to first unread message
Nathan
Dec 13, 2024, 6:00:47 AM12/13/24
to ZAP Developer Group
Hi In our recent owasp report we have had a vulnerability that says the following.
Hidden File Found
A sensitive file was identified as accessible or available. This may leak administrative, configuration, or credential information which can be leveraged by a malicious individual to further attack the system or conduct social engineering efforts.
It says in the report HTTP/1.1 301 Moved Permanently
When we click on the links the files don't exist we just get a 404 page saying "page not found"
we use a wordpress theme.
is says it's at the root of the domain name where the website theme is. We are able to view all hidden files on the site however we are unable to see them.
Is that saying that if the files were there they would be accessible or available?
Any help on this would be great. I have attached a screenshot.
Hidden File Found
A sensitive file was identified as accessible or available. This may leak administrative, configuration, or credential information which can be leveraged by a malicious individual to further attack the system or conduct social engineering efforts.
It says in the report HTTP/1.1 301 Moved Permanently
When we click on the links the files don't exist we just get a 404 page saying "page not found"
we use a wordpress theme.
is says it's at the root of the domain name where the website theme is. We are able to view all hidden files on the site however we are unable to see them.
Is that saying that if the files were there they would be accessible or available?
Any help on this would be great. I have attached a screenshot.
psiinon
Dec 13, 2024, 6:07:01 AM12/13/24
to ZAP Developer Group
This is a question about using ZAP, not about developing it.
Please ask it on the ZAP User Group: https://groups.google.com/group/zaproxy-users
Many thanks,
Simon
Nathan
Dec 13, 2024, 6:10:34 AM12/13/24
to ZAP Developer Group
ok thanks I have posted the same on there now.
Reply all
Reply to author
Forward
0 new messages