Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
WebPageTest Unauthorized Access Vulnerability - Vulnerability Database

WebPageTest Unauthorized Access Vulnerability

Description

WebPageTest is a web performance tool that uses real browsers to access web pages.

WebPageTest is designed to be accessed by privileged users only. It's not recommended to have WebPageTest publicly accessible.

Remediation

Restrict access to WebPageTest

References

WebPageTest

Related Vulnerabilities

Trace.axd Detected High
Common tags: Configuration Information Disclosure
Apache stronghold-status enabled Low
Common tags: Configuration Information Disclosure
JBoss Server MBean High
Common tags: Configuration Information Disclosure
JBoss JMX Console Unrestricted Access High
Common tags: Configuration Information Disclosure
JBoss Web Console JMX Invoker High
Common tags: Configuration Information Disclosure

Severity

Medium

Classification

CWE-200
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

Tags

Configuration
Information Disclosure