A sensitive information leakage is discovered in ELMAH HTTP Module, which can expose valuable details without proper restrictions.
Disable ELMAH if not required in production or ensure authentication and authorization controls are implemented to secure access. Consult: https://elmah.github.io/a/securing-error-log-pages/