X-Powered-By Header Found

Impact: Informational

Description

The presence of the X-Powered-By header reveals the technologies used by the web server, providing valuable information to attackers. This disclosure can aid attackers in identifying vulnerabilities and planning their attacks more effectively.

Recommendation

To mitigate this issue, configure the web server to stop sending the X-Powered-By header.

References

CWE-16
CWE-200
Mozilla: X-Powered-By
OWASP 2021-A5
OWASP: Web Server Security

👉 You might also like:

ASP.NET Version Disclosure - Vulnerability

Missing or Insecure Cache-Control Header - Vulnerability

PHP Version Disclosure - Vulnerability

Apache Version Disclosure - Vulnerability

Last updated on May 13, 2024

X-Powered-By Header Found

Description

Recommendation

References

Use SmartScanner Free version to test for this issue