You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Describe the security issue
The application discloses technical internal information about the technologies or components used in
the error pages. CWE-209,CWE-200
Vulnerability Location
Stack traces on MirthConnect web portal and API
Describe the security issue
The application discloses technical internal information about the technologies or components used in
the error pages. CWE-209,CWE-200
Vulnerability Location
![image](https://user-images.githubusercontent.com/28092386/181728389-a9903232-d754-4a63-83cd-570cd1cc3853.png)
Stack traces on MirthConnect web portal and API
Environment
Suggested remediation
![image](https://user-images.githubusercontent.com/28092386/181728711-d6532d00-ffef-46de-8c90-962ba89093b3.png)
Review the configuration of the application to prevent stack traces.
Declare default error page for a specific error code in the WEB-INF/web.xml configuration file
Jetty Create Custom error pages
OWASP Error handling cheat sheet
OWASP Web Security Testing Guide - Information gathering step
PortSwigger Information disclosure vulnerabilities
The text was updated successfully, but these errors were encountered: