Description
Application error or warning messages may expose sensitive information about an application's internal workings to an attacker.
Acunetix found an error message that may disclose sensitive information. By requesting a specially crafted URL, Acunetix generated an ASP.NET error message. The message contains a complete stack trace and Microsoft .NET Framework version.
Remediation
Adjust the application's web.config to enable custom errors for remote clients (refer to 'Detailed information' section).
Related Vulnerabilities
WordPress Plugin Health Check & Troubleshooting Arbitrary File Disclosure (1.2.3)
OData feed accessible anonymously
ASP.NET cookies accessible from client-side scripts
Jupyter Notebook publicly accessible
WordPress Plugin PAYPAL CURRENCY CONVERTER BASIC FOR WOOCOMMERCE Arbitrary File Disclosure (1.3)