Directory Listing (WebDAV)

Severity: Information

Invicti identified a Directory Listing (WebDAV).

The web server responded with a list of files located in the target directory.

An attacker can see the files located in the directory and could potentially access files which disclose sensitive information.
Actions To Take#
  1. Configure the web server to disallow directory listing requests.
  2. If you are not using this extension, it's recommended to be disabled.

Dead accurate, fast & easy-to-use Web Application Security Scanner

Get a demo