'; } else{ echo ''; } echo '
|
|
|||
| Rule General Information |
|---|
| Release Date: | 2026-06-16 | |
| Rule Name: | Magento Unprotected Development Files Information Disclosure Vulnerability - 2 | |
| Severity: | ||
| CVE ID: | ||
| Rule Protection Details |
|---|
| Description: | Magento version 1.9.2.x includes development directories or files that might reveal passwords and other sensitive information. The development directories and files are not protected by default. According to Magento, these tests are not supposed to end up on production servers. Attackers can access these unprotected development configuration files containing sensitive credentials and database connection information. | |
| Impact: | An attacker could exploit this vulnerability to have unspecified effect. | |
| Affected OS: | Windows, Linux, Others | |
| Reference: | https://magento.com/security |
|
| Solutions |
|---|
| Please contact the software vendor to update the software patch. |