We have develop a website usin DNN community version. this website is tested by Qualys Guard for security. it gives below report, My question to All concerned person how to solve this issue in DNN?
Path Disclosure (34)
150004 Path-Based Vulnerability (34) 150004 Path-Based Vulnerability Yasmall New
URL: https://yasmalldnn.aldar.com/en-us//Shop/Books-Sta...
Finding # 3633366 Severity Confirmed Vulnerability - Level 2 Group Path Disclosure First Time Detected 14 Mar 2017 20:17 GMT+0400 CWE CWE-22 Last Time Detected 14 Mar 2017 20:17 GMT+0400 OWASP A4 Insecure Direct Object References A7 Missing Function Level Access Control Last Time Tested 14 Mar 2017 20:17 GMT+0400 WASC WASC-15 Application Misconfiguration WASC-16 Directory Indexing WASC-17 Improper Filesystem Permissions Times Detected 1
CVSS Base 2.1 CVSS Temporal1.9
Details
Threat A potentially sensitive file, directory, or directory listing was discovered on the Web server.
Impact The contents of this file or directory may disclose sensitive information.
Solution Verify that access to this file or directory is permitted. If necessary, remove it or apply access controls to it.