Piwik Detected

Summary

Netsparker detected Piwik, a web-based statistics software.

This information can help an attacker gain a greater understanding of the systems in use and potentially to develop further attacks.

Impact

An attacker can search for specific security vulnerabilities for the version of Piwik identified. More importantly, Piwik discloses too much information about hidden pages (config, administration etc.).

Remediation

Configure your web server to prevent information leakage from the Piwik directory by implementing access control mechanisms to stop public access.

Classifications

CAPEC-224, WASC-45, OWASP PC-C7

Vulnerability Index

You can search and find all vulnerabilities

Select Category

Critical
High
Medium
Low
Information
Best Practice

Search Vulnerability

Related Vulnerabilities

Web Backdoor Detected
Backup Source Code Detected
Elmah.axd / Errorlog.axd Detected
SVN Detected
Trace.axd Detected

Dead accurate, fast & easy-to-use Web Application Security Scanner

GET A DEMO

NETSPARKER

USE CASES

WEB SECURITY

COMPANY

Netsparker Ltd