ID 4675.PRM Type nessus Reporter Tenable Modified 2019-01-16T00:00:00
Description
The remote web server is running a SOAP service that is enumerated via a '.wsdl' configuration file.
Distributing such files over the web can be done, but the webmaster should make sure that they do not contain confidential data.
Binary data 4675.prm
{"id": "4675.PRM", "type": "nessus", "bulletinFamily": "scanner", "title": "SOAP '.wsdl' File Detection", "description": "The remote web server is running a SOAP service that is enumerated via a '.wsdl' configuration file. \nDistributing such files over the web can be done, but the webmaster should make sure that they do not contain confidential data. ", "published": "2008-09-15T00:00:00", "modified": "2019-01-16T00:00:00", "cvss": {"score": 0.0, "vector": "NONE"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nnm/4675", "reporter": "Tenable", "references": [], "cvelist": [], "immutableFields": [], "lastseen": "2021-08-19T13:09:36", "viewCount": 1, "enchantments": {"dependencies": {}, "score": {"value": 2.6, "vector": "NONE"}, "backreferences": {}, "exploitation": null, "vulnersScore": 2.6}, "pluginID": "4675", "sourceData": "Binary data 4675.prm", "naslFamily": "Data Leakage", "cpe": [], "solution": "Ensure that confidential data is not present within the '.wsdl' file. Note: NNM only reports on the first occurence of this item on a web server. Parse your entire web source for similar occurrences.", "nessusSeverity": "Info", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": [], "_state": {"dependencies": 1646128075}}
