Big Redirect Detected (Potential Sensitive Information Leak)
- Risk:
Low
- Type:
- Passive
- CWE:
- 201
- Summary
- The server has responded with a redirect that seems to provide a large response. This may indicate that although the server sent a redirect it also responded with body content (which may include sensitive details, PII, etc.).
- Solution
- Ensure that no sensitive information is leaked via redirect responses. Redirect responses should have almost no content.
- Other info
- Location header URI length: 18 [http://example.com]. Predicted response size: 318. Response Body Length: 319.