php-rest-sql icon indicating copy to clipboard operation
php-rest-sql copied to clipboard
verified publisher icon peej

Direct access to phprestsql.ini

Open keemor opened this issue 10 years ago • 1 comments

You can display phprestsql.ini config in the browser http://example.com/phprestsql.ini

One of the solution is to add:

RewriteRule phprestsql.ini !^$

to .htaccess

keemor avatar Aug 26 '15 10:08 keemor

Not sure why would anyone wants to do this, definitely a vulnerability as far as OWASP (https://www.owasp.org/index.php/Category:OWASP_Top_Ten_Project) is concerned.

adcoolguy avatar Oct 04 '15 14:10 adcoolguy