CWE-209: Information Exposure Through an Error Message
Error messages are very useful for developers, in order to debug a web application. But they must be used on development servers only. Indeed, error messages that are displayed on production environments lead to information exposure for potential attackers.
|Ease of Detection||Easy|