/alerttags/wstg-v42-errh-01/ Recent content in WSTG-V42-ERRH-01 on ZAP Hugo en-us /docs/alerts/90022/ Mon, 01 Jan 0001 00:00:00 +0000 /docs/alerts/90022/ <p>This page contains an error/warning message that may disclose sensitive information like the location of the file that produced the unhandled exception. This information can be used to launch further attacks against the web application. The alert could be a false positive if the error message is found inside a documentation page.</p> /docs/alerts/110009/ Mon, 01 Jan 0001 00:00:00 +0000 /docs/alerts/110009/ <p>The full path of files which might be sensitive has been exposed to the client.</p> /docs/alerts/10023/ Mon, 01 Jan 0001 00:00:00 +0000 /docs/alerts/10023/ <p>The response appeared to contain common error messages returned by platforms such as ASP.NET, and Web-servers such as IIS and Apache. You can configure the list of common debug messages.</p> /docs/alerts/10056/ Mon, 01 Jan 0001 00:00:00 +0000 /docs/alerts/10056/ <p>The response contained an X-Debug-Token or X-Debug-Token-Link header. This indicates that Symfony&rsquo;s Profiler may be in use and exposing sensitive data.</p>