Automate Recon and scanning process with Vidoc. All security teams in one place
By kannthu
The "ASP.NET Trace.AXD Information Leak" module is designed to detect a potential information leak vulnerability in ASP.NET applications. This module targets the "Trace.axd" file, which is used for tracing and debugging purposes in ASP.NET applications.
The severity of this vulnerability is classified as low.
This module was authored by dhiyaneshDK.
If exploited, the "ASP.NET Trace.AXD Information Leak" vulnerability could expose sensitive information about the application, such as stack traces, error messages, and potentially sensitive configuration details. This information could be leveraged by attackers to gain a better understanding of the application's structure and potentially identify additional vulnerabilities.
The "ASP.NET Trace.AXD Information Leak" module works by sending a GET request to the "/Trace.axd" path of the target application. It then applies two matching conditions to determine if the vulnerability is present:
If both matching conditions are met, the module reports the vulnerability.
Reference:- https://www.rapid7.com/db/vulnerabilities/spider-asp-dot-net-trace-axd/