Information Disclosure - Sensitive Information in URL

Risk:
Informational

Type:
Passive

CWE:
CWE-200

Summary: The request appeared to contain sensitive information leaked in the URL. This can violate PCI and most organizational compliance policies. You can configure the list of strings for this check to add or remove values specific to your environment.

Solution: Do not pass sensitive information in URIs.

Other info: The URL appears to contain US Social Security Number(s)

Free security scan for your website

Don't show website scan report rating on the leaderboard