Logs publicly accessible
Overview
Description
Applications use logs to store event history/transactions. Logs can be used for statistics, review, audit depending on that application.
Generally, logs contain file paths, system information, user information, and sometimes username passwords.
Logs should be accessible by an authorized and internal person of the organization. Sometimes, due to misconfiguration, log files are publically accessible over the internet.
An attacker can use such logs and obtain useful knowledge of that application. It can later use to exploit some vulnerability.
Example
Impact
It could leak sensitive data/information of the organization.
It could be used by an attacker to make more advanced attacks.
Prevention
- Remove or restrict access to the log of files.
- Disable DEBUG mode when you deploy your code.
- Many frameworks provide debug mode for the testing purpose that should be disabled in production.