Vulnerability
Description
A Java web server inadvertently exposes sensitive source code files in the WEB-INF folder, compromising application confidentiality and allowing potential attackers to reverse engineer the code.
Recommendation
Configure the web server to restrict access to the WEB-INF folder and its contents. Additionally, consider obfuscating deployed Java classes as part of a layered defense strategy.
Written by
Experience the Beagle Security platform
Unlock one full penetration test and all Advanced plan features free for 10 days
