Apache Server-Info Detected

Severity: Medium

Invicti detected that Apache server-info is enabled.

Information disclosed from this page can be used to gain further information about the target system.

An attacker can gather useful information about the internals of the target web server, including:
  • Current server configuration
  • Server version
  • Server build time
  • Server root
  • Server httpd.conf configuration file path
  • Server build parameters
  • Apache modules and module directives
This type of information can help an attacker harvest information on the target in order to further develop the attack surface.
Invicti Logo

Dead accurate, fast & easy-to-use Web Application Security Scanner

Get a demo