/vulndb/Directory Listing Enabled

Directory listings may disclose information about the web application and it’s environment that was not intended to be public.

An attacker may discover resources which are not supposed to be public.


Disable directory listings by adding a blank index page in the directory itself. This way the server will provide a blank page whenever a directory is requested. On some web server It is also possible to prevent directory listing with a configuration option.