Programming Error Message (Ruby)

Severity: Low

Summary#

Invicti detected a Ruby Error Message.

Impact#

Such error messages may reveal sensitive information about your application and its structure. While they can be helpful during development, they may give an attacker valuable insight into you application`s inner working.

Remediation#

It's generally advised to turn off stack traces and descriptive error messages for public facing web applications.

Classifications#

ISO27001-A.18.1.3, HIPAA-164.306(a), 164.308(a), OWASP 2013-A5, PCI v3.2-6.5.5, CAPEC-118, CWE-210, WASC-13, OWASP 2017-A6

Programming Error Message (Ruby)

Related Articles

Build your resistance to threats. And save hundreds of hours each month.