Qualys Path-Based Vulnerability – Exposing potentially snsitive links.

Viewing 3 replies - 1 through 3 (of 3 total)
  • Moderator Yui

    (@fierevere)

    永子

    error 404 means that page does not exists and it is – no error as well.
    regarding error 500 on url – take a look at your webserver error log,
    it should be “response 404” too, but for some reason your server gives error 500 (internal server error)

    Also please clarify, you’ve scanned against www.remarpro.com or your own site (and just replaced links) ?

    Thread Starter nfong

    (@nfong)

    I scanned against my site and just replace the domain name for example purposes.

    Folks can do their free trial and try it against their own websites.

    Thread Starter nfong

    (@nfong)

    Got details and it is ok:

    WordPress will resolve partial URLs and redirect to the most likely location. This functionality is called Canonical Redirects.

    This is part of the core WordPress software and is not considered to be a security vulnerability.

Viewing 3 replies - 1 through 3 (of 3 total)
  • The topic ‘Qualys Path-Based Vulnerability – Exposing potentially snsitive links.’ is closed to new replies.

Tags