Detail

Piwik Detected

Severity: Information

Summary #

Netsparker detected Piwik, a web-based statistics software.

This information can help an attacker gain a greater understanding of the systems in use and potentially to develop further attacks.

Impact #
An attacker can search for specific security vulnerabilities for the version of Piwik identified. More importantly, Piwik discloses too much information about hidden pages (config, administration etc.).
Remediation #
Configure your web server to prevent information leakage from the Piwik directory by implementing access control mechanisms to stop public access.
Classifications #
CAPEC-224; CWE-205; ISO27001-A.14.2.5 or A.18.1.3; WASC-45; OWASP PC-C7; OWASP 2017-A6
Vulnerability Index

Vulnerability Index

You can search and find all vulnerabilities

Select Category

OR

Search Vulnerability

Related Vulnerabilities

Netsparker

Dead accurate, fast & easy-to-use Web Application Security Scanner

Get a demo

Netsparker Ltd
220 Industrial Blvd Ste 102
Austin, TX 78745

© Netsparker 2021, by Invicti

RESOURCES

USE CASES

WEB SECURITY

COMPANY

© Netsparker 2021, by Invicti

Subscription Services Agreement Data Protection Policy Information Security Policy Privacy Policy Sitemap