Is a GET/POST call you are using to get the xml content? Have you reproduced this yourself. Or is it from that security report?
On 5 Sep 2017 23:17, "Alejandro Vargas M." < alejandro.var...@kymsolutions.com> wrote: Good afternoon, I have a website on a client, and they ran a vulnerability test, and it throws a vulnerability that any user can see web.xml from a web browser, how can I hide to see web.xml or any other file from the browser? Thanks. -- Alejandro Vargas Mayorga *Gerente Desarrollo C.A. & C.* *Tel. 506- 7232-3366* *Email:**alejandro.var...@kymsolutions.com* <%20alejandro.var...@kymsolutions.com> *www.kymsolutions.com* <http://www.kymsolutions.com/> * Visite nuestra aula virtual! *
