Web Server HTTP Header Information Disclosure

Medium Nessus Plugin ID 88099


The remote web server discloses information via HTTP headers.


The HTTP headers sent by the remote web server disclose information that can aid an attacker, such as the server version and languages used by the web server.


Modify the HTTP headers of the web server to not disclose detailed information about the underlying web server.

Plugin Details

Severity: Medium

ID: 88099

File Name: pci_www_info_disclosure.nasl

Version: $Revision: 1.3 $

Type: remote

Family: Web Servers

Published: 2016/01/22

Modified: 2018/01/22

Dependencies: 18418, 57034, 11919, 48204, 39446, 10107

Risk Information

Risk Factor: Medium


Base Score: 5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N


Base Score: 5.3

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Vulnerability Information

Required KB Items: Settings/ParanoidReport