Description
Exposing the PHP version used by the server facilitates attackers in identifying vulnerabilities more easily. This information exposes the server to potential risks.
Recommendation
To mitigate this issue, configure the web server to stop revealing the PHP version.
References
Related Issues
- ASP.NET Version Disclosure - Vulnerability
- Apache Version Disclosure - Vulnerability
- Nginx Version Disclosure - Vulnerability
- Server Version Disclosure - Vulnerability
- Tags:
- HTTP Headers
- Information Disclosure
- Application Misconfiguration
- PHP
- Web Server
Anything's wrong? Let us know Last updated on May 13, 2024