An attacker can retrieve a list of files and directories within a web server, potentially exposing sensitive information such as backup files or scripts. This vulnerability arises when directory listing is enabled on the server.
To mitigate this issue, ensure that your web server is configured to disable directory browsing.