This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
Error Message Infoleaks
From OWASP
This article is a stub. You can help OWASP by expanding it or discussing it on its Talk page.
This is a Vulnerability. To view all vulnerabilities, please see the Vulnerability Category page.
Last revision (mm/dd/yy): 01/30/2009
Description
Displaying unsolicited excess detail within Error messages that can be used to facilitate an attack.
Risk Factors
TBD
Examples
- Displaying debug or stack trace information
- Retaining commented-out code within the production source code
Related Attacks
Related Vulnerabilities
Related Controls
Related Technical Impacts
References
TBD