WebDAV Enabled | Invicti

Summary #

Invicti detected that WebDAV is enabled. WebDAV is an extension to the HTTP protocol and it allows authorized users to remotely add and change content on your web server.

Impact #

If WebDAV is not configured properly it may allow remote users to modify the content of the website.

Remediation #

If you are not using this extension, it's recommended to be disabled.

Classifications #

CWE-16; ISO27001-A.9.4.4; WASC-15; OWASP PC-C6 , CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L/E:H/RL:O/RC:C

Vulnerability Index

You can search and find all vulnerabilities

Select Category

Critical
High
Medium
Low
Best Practice
Information

Search Vulnerability

Related Vulnerabilities

Code Execution via WebDAV
WebDAV Directory Has Write Permissions
Weak Ciphers Enabled
Apache MultiViews Enabled
OPTIONS Method Enabled

Dead accurate, fast & easy-to-use Web Application Security Scanner

Get a demo