Sensitive Old/Backup Resource Found
Impact: Medium
Description
Backup files can disclose important information like an application’s source code, administrative interfaces, or even credentials to connect to the administrative interface or the database server.
Recommendation
Remove all backup files from web publicly accessible locations and make sure backup files are not automatically created or copied in these locations.
References
- OWASP: Review Old Backup and Unreferenced Files for Sensitive Information
- CWE-530
- CWE-200
- OWASP 2007-A6
- OWASP 2021-A1
👉 You might also like:
Old/Backup Resource Found - Vulnerability
Sensitive Unreferenced Resource Found - Vulnerability
Unreferenced Resource Found - Vulnerability
Directory Listing of Sensitive Files - Vulnerability
Last updated on February 15, 2021