PHP Version Disclosure

Impact: Informational

Description

Exposing the PHP version used by the server facilitates attackers in identifying vulnerabilities more easily. This information exposes the server to potential risks.

Recommendation

To mitigate this issue, configure the web server to stop revealing the PHP version.

References

CWE-16
CWE-200
OWASP 2021-A5
OWASP: Web Server Security

👉 You might also like:

ASP.NET Version Disclosure - Vulnerability

Apache Version Disclosure - Vulnerability

Nginx Version Disclosure - Vulnerability

Server Version Disclosure - Vulnerability

Last updated on May 13, 2024

PHP Version Disclosure

Description

Recommendation

References

Use SmartScanner Free version to test for this issue