All Products
Document Center

[Vulnerability notice] Configuration file leakage in SVN

Last Updated: Nov 23, 2017


Apache Subversion (SVN) is a software versioning and revision control system distributed as open source under the Apache License.

The folder .svn containing the SVN information is located at the root directory of the SVN code. Attackers may traverse the website directory to locate the .svn folder and obtain sensitive information from it.


Remove the .svn directory from the online code without impacting code execution.

Note: To avoid data loss, make a backup before upgrading, or create a hard disk snapshot for ECS.