1. Home
  2. Weaknesses
  3. CWE-548

CWE-548: Exposure of Information Through Directory Listing

ID CWE-548
Abstraction Variant
Structure Simple
Status Draft
Number of CVEs 29
Detail Dashboard Vulnerabilities Web & Social
A directory listing is inappropriately exposed, yielding potentially sensitive information to attackers.

A directory listing provides an attacker with the complete index of all the resources located inside of the directory. The specific risks and consequences vary depending on which files are listed and accessible.

Modes of Introduction

Phase Note
Implementation
Operation

Relationships

View Weakness
# ID View Status # ID Name Abstraction Structure Status
CWE-1000 Research Concepts Draft CWE-497 Exposure of Sensitive System Information to an Unauthorized Control Sphere Base Simple Incomplete

CVEs Published

Based on CVE published date

CVSS Severity

CVSS Severity - By Year

CVSS Base Score

# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories Exploits PoC Pubblication Date Modification Date
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories PoC Pubblication Date Modification Date