CWE-548

Overview

CWE ID
548

CWE Name
Exposure of Information Through Directory Listing

CWE Abstraction
Variant

CWE structure
Simple

CWE Status
Draft

Description

A directory listing is inappropriately exposed, yielding potentially sensitive information to attackers.

Extended Description

A directory listing provides an attacker with the complete index of all the resources located inside of the directory. The specific risks and consequences vary depending on which files are listed and accessible.

Related CWEs

CWE ID	View ID	Nature	Ordinal
497	1000	ChildOf	Primary

Related CVEs

CVE
CVE-2021-32515
CVE-2021-32511
CVE-2021-32510
CVE-2021-27505
CVE-2014-125069
CVE-2016-15019
CVE-2020-8161
CVE-2021-45446
CVE-2021-23195
CVE-2024-3707
CVE-2022-36243
CVE-2024-7809
CVE-2024-7912
CVE-2024-45096
CVE-2024-8711