edit-icon download-icon

[Vulnerability notice] Configuration file leakage in SVN

Last Updated: Nov 23, 2017

Description

Apache Subversion (SVN) is a software versioning and revision control system distributed as open source under the Apache License.

The folder .svn containing the SVN information is located at the root directory of the SVN code. Attackers may traverse the website directory to locate the .svn folder and obtain sensitive information from it.

Fix

Remove the .svn directory from the online code without impacting code execution.

Note: To avoid data loss, make a backup before upgrading, or create a hard disk snapshot for ECS.

Thank you! We've received your feedback.