IBM Rational AppScan 8.5.0.1 was run on my moodle site and I got the following: any ideas on what measure should be taken?
[1 of 1] CMME Information Disclosure
Severity: High
Test Type: Application
Vulnerable URL: https://myurl/
CVE ID(s): N/A
CWE ID(s): N/A
Remediation Tasks: Restrict access to "data/admin/users"
I tried to find "data/admin/users" but the closest I could find was "admin/users" folder which is found in the root moodle directory.
where could i find this folder, "data/admin/users"
will Restricting access to this folder affect my site?
thanks,