Description
Exposing the PHP version used by the server facilitates attackers in identifying vulnerabilities more easily. This information exposes the server to potential risks.
Recommendation
To mitigate this issue, configure the web server to stop revealing the PHP version.
References
Related Issues
- ASP.NET Version Disclosure - Vulnerability
- X-Powered-By Header Found - Vulnerability
- Nginx Integer Overflow - CVE-2017-7529
- Vulnerable PHP Version - Vulnerability
- Tags:
- HTTP Headers
- Information Disclosure
- Application Misconfiguration
- PHP
- Web Server
Anything's wrong? Let us know Last updated on May 13, 2024