Configuration Alerts

Open Directory (opendir)

What is it?

A web server misconfiguration that allows visitors to browse directory contents (e.g., /files/) instead of being restricted to specific web pages.

WhereHow is it detected?

Nimbusec

searches
~~Detected~~for ~~during~~file ~~vulnerability~~directory ~~scans,~~listing ~~penetration~~when ~~tests,~~visiting ~~or manual browsing of URL paths.~~webpage.

~~Commonly flagged by tools like those of Nimbusec.~~

Alert level:

YELLOW

~~YELLOW–~~– Can expose sensitive files and aid in targeted attacks.

Recommended actions:

Disable directory listing.
Store sensitive files outside web-accessible directories.
Conduct regular audits of file paths exposed to the internet.

PHP Error Display

What is it?

When PHP error messages are displayed directly in the browser instead of being hidden and logged securely.

WhereHow is it detected?

Nimbusec

searches
~~Detected~~for ~~during~~php ~~penetration~~error ~~tests,~~message ~~vulnerability~~when ~~scans,~~visiting ~~or by simply triggering errors on the site (e.g., malformed requests).~~webpage.

Alert level:

YELLOW

~~YELLOW–~~– Reveals internal system details (file paths, queries, API keys) that attackers can exploit.

Recommended actions:

Disable display_errors in production environments.
Log errors to a secure server or file instead of displaying them publicly.
Implement custom error pages for users.
Regularly review logs for abnormal or repeated errors.

Public Config

What is it?

~~Files,~~Apache ~~databases,~~status ~~or storage resources~~pages are ~~accidentally~~checked ~~configured~~for aspublic ~~“public,” making them accessible~~access without authentication.

WhereHow is it detected?

Nimbusec

checks
~~Detected~~/server-info ~~during~~/server-status ~~cloud~~for ~~security~~public ~~audits, vulnerability scans, or penetration tests.~~accessibility

~~Common with cloud storage (e.g., AWS S3, Azure Blob, Google Cloud Storage).~~

Alert level:

YELLOW

~~YELLOW–~~– ~~Often~~Reveals ~~leads~~internal system details, which can lead to ~~large-scale~~different ~~data~~attack ~~leaks and breaches.~~

vectors.

Recommended actions:

Apply “private by default” permissions to all storage resources.
~~Review access controls regularly (especially in cloud environments).~~

Use encryption and authentication for all sensitive files.
Enable monitoring for unauthorized public access changes.

Security Header Config

What is it?

Missing or misconfigured HTTP response headers that strengthen browser-level protections against attacks.

Occures when SHR grade is ~~lowern~~lower than "D".

WhereHow is it detected?

Nimbusec

~~Detected~~calculates ~~using~~a ~~automated~~grade ~~tools~~from ~~such~~A asto ~~those~~F for the Security Headers of ~~Nimbusec~~scanned ordomains ~~penetration~~based ~~testing.~~

Mozilla Observatory.

Common headers include CSP, HSTS, X-Frame-Options, and X-Content-Type-Options.

Alert level:

~~YELLOW–~~YELLOW – Increases exposure to XSS, clickjacking, and MITM attacks.

Recommended actions:

Add and properly configure key security headers.
Follow OWASP Secure Headers Project guidelines.
~~Regularly test site headers with automated tools.~~

Review headers after web server or app updates.

~~For more information, please check the following article:~~
~~https://blog.projectdiscovery.io/guide-to-dns-takeovers/~~