|
|
|||
| Rule General Information |
|---|
| Release Date: | 2024-06-18 | |
| Rule Name: | Sensitive File parameters.yml Access Detection | |
| Severity: | ||
| CVE ID: | ||
| Rule Protection Details |
|---|
| Description: | parameters.yml is used in the Symfony framework to store sensitive information such as database account passwords and secret values. This rule is used to detect access to sensitive files parameters.yml. | |
| Impact: | An attacker could exploit this vulnerability to have unspecified effect. | |
| Affected OS: | Windows, Linux, Others | |
| Reference: | ||
| Solutions |
|---|
| 1. Make sure the file system permissions of Web servers and applications are set properly to limit access to sensitive files and directories. 2. Review the access record of the system to see if there is any unauthorized access. 3. Ensure that the system and applications have been updated to the latest version, and fix known vulnerabilities to reduce the impact on the system. |