X-Backend-Server Header Information Leak
- Risk:
Low
- Type:
- Passive
- CWE:
- CWE-200
- Summary
The server is leaking information pertaining to backend systems (such as hostnames or IP addresses). Armed with this information an attacker may be able to attack other systems or more directly/efficiently attack those systems.
- Solution
Ensure that your web server, application server, load balancer, etc. is configured to suppress X-Backend-Server headers.
Free security scan for your website