Gitignore File Detected

low Web App Scanning Plugin ID 98595

Synopsis

Gitignore File Detected

Description

The web server on the remote host contains gitignore configuration files. This potential flaw can be used to access content from the web server that might otherwise be private.

Solution

Remove the listed .gitignore file.

See Also

https://git-scm.com/docs/gitignore

Plugin Details

Severity: Low

ID: 98595

Type: remote

Published: 5/16/2019

Updated: 11/26/2021

Scan Template: api, basic, full, pci, scan

Risk Information

VPR

Risk Factor: Low

Score: 1.4

CVSS v2

Risk Factor: Medium

Base Score: 5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N

CVSS Score Source: Tenable

CVSS v3

Risk Factor: Low

Base Score: 3.7

Vector: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

CVSS Score Source: Tenable

CVSS v4

Risk Factor: Medium

Base Score: 6.3

Vector: CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

CVSS Score Source: Tenable

Reference Information