CWE-756 · Missing Custom Error Page

Scaner-VSvulnerability catalog · v4.2

Home Catalog Sources CWE CAPEC ATT&CK Mitigations Products Vendors Docs

← Back to List

CWE-756BaseIncomplete

Abstraction: Base

Status: Incomplete

Missing Custom Error Page

The product does not return custom error pages to the user, possibly exposing sensitive information.

Open in catalog with CWE filter →

Related CAPECs

—

Related vulnerabilities

CVE-2018-8913Missing custom error page vulnerability in Synology Web Station before 2.1.3-0139 allows remote attackers to conduct phishing attacks via a crafted URL.

CVE-2023-27998A lack of custom error pages vulnerability [CWE-756] in FortiPresence versions 1.2.0 through 1.2.1 and all versions of 1.1 and 1.0 may allow an unauthenticated attacker with the ability to navigate to the login GUI to gain sensitive information via navigating to specific HTTP(s) paths.

CVE-2022-3175Missing Custom Error Page in GitHub repository ikus060/rdiffweb prior to 2.4.2.