PHP modules disclosure scan

PHP Disclosure

What It Checks

This scanner checks if your server lists the PHP modules (known as "PHP Easter Egg"). PHP contains a flaw that discloses sensitive information about installed modules, resulting in a loss of confidentiality.

Why It Matters

PHP contains a flaw that discloses sensitive information about installed modules, resulting in a loss of confidentiality. This information can help attackers understand your server setup and find potential vulnerabilities.

What You'll See

Good Status:

• Your site does not reveal the PHP modules.
• The rules forbidding access to the PHP Easter Egg have been successfully added to your .htaccess file.

Bad Status:

• The PHP Easter Egg should not be accessible to anyone.

Warning:

• Unable to determine if the PHP Easter Egg is accessible. But you can activate the PHP Disclosure protection from the Sensitive Data module.

How to Fix

Activate the PHP Disclosure protection from the Sensitive Data module. This will prevent access to the PHP Easter Egg, which discloses information about installed PHP modules.