This script is Copyright (C) 2003-2016 Tenable Network Security, Inc.
The remote web server is affected by an information disclosure
The remote web server reveals the physical path of the webroot when a
nonexistent page is requested.
While printing errors to the output is useful for debugging
applications, this feature should be disabled on production servers.
See also :
Upgrade the web server to the latest version. Alternatively,
reconfigure the web server to disable debug reporting.
Risk factor :
Medium / CVSS Base Score : 5.0
CVSS Temporal Score : 4.1
Public Exploit Available : true
Family: Web Servers
Nessus Plugin ID: 11714 (404_path_disclosure.nasl)
Get Nessus Professional to scan unlimited IPs, run compliance checks & moreBuy Nessus Professional Now