Stack Trace Disclosure (Django)
Severity:
Medium
Summary
Invicti identified a stack trace disclosure (Django) in the target web server's HTTP response.
Impact
An attacker can obtain information such as:
- Exact Django & Python version.
- Used database type, database user name, current database name.
- Details of the Django project configuration.
- Internal file paths.
- Exception-generated source code, local variables and their values.
Remediation
Apply the following changes on your Django settings file to prevent this problem: set DEBUG option to False.
Required Skills for Successful Exploitation
Actions To Take
Vulnerability Index
You can search and find all vulnerabilities
Select Category
Select Vulnerability
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Select Vulnerability
Featured resources
Build your resistance to threats. And save hundreds of hours each month.
