X-Powered-By Header Found

Impact: Informational

Description

The X-Powered-By header describes the technologies used by the webserver. This information exposes the server to attackers. Using the information in this header, attackers can find vulnerabilities easier.

Recommendation

Configure the webserver to stop sending the X-Powered-By header.

References

CWE-200
OWASP 2007-A6
OWASP 2021-A1
OWASP 2017-A6
OWASP 2021-A5
CWE-16

👉 You might also like:

PHP Version Disclosure - Vulnerability

ASP.NET Version Disclosure - Vulnerability

Apache Version Disclosure - Vulnerability

Nginx Version Disclosure - Vulnerability

Last updated on February 15, 2021

X-Powered-By Header Found

Description

Recommendation

References

Use SmartScanner Free version to test for this issue