X-AspNet-Version Response Header
- Risk:
Low
- Type:
- Passive
- Summary
Server leaks information via “X-AspNet-Version”/“X-AspNetMvc-Version” HTTP response header field(s).
- Solution
Configure the server so it will not return those headers.
- Other info
- An attacker can use this information to exploit known vulnerabilities.
- References
https://www.troyhunt.com/shhh-dont-let-your-response-headers/
https://blogs.msdn.microsoft.com/varunm/2013/04/23/remove-unwanted-http-response-headers/
Free online web security scanner