Pagekit Docker Image Exposes .htaccess File

Hi, first of all - great work with the repo.

# Pagekit Docker Image Exposes .htaccess File

# Description
The community Pagekit Docker image (pagekit/pagekit on Docker Hub) allows public access to the .htaccess file located in the web root. 
This file contains configuration rules for Apache and should not be exposed, as it can reveal sensitive application details and URL rewrites. 
The exposure is due to a missing Apache configuration directive to deny access to hidden files (e.g., <Files ".ht*"> Require all denied </Files>).

# Proof of Concept
Screenshot

<img width="1147" height="358" alt="Image" src="https://github.com/user-attachments/assets/0353ed3c-b412-4570-90c5-ded215258b46" />

# Details
- Affected Docker image: `pagekit/pagekit`

- Affected Docker image - link: https://hub.docker.com/r/pagekit/pagekit


CWE:
- CWE-200: Exposure of Sensitive Information to an Unauthorized Actor
- CWE-284: Improper Access Control
- CWE-285: Improper Authorization

References
- https://github.com/izuolan/dockerfiles/tree/master/pagekit
- https://www.acunetix.com/vulnerabilities/web/htaccess-file-detected/
- https://www.invicti.com/web-vulnerability-scanner/vulnerabilities/htaccess-file-detected

Best regards, 

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Pagekit Docker Image Exposes .htaccess File #6

Pagekit Docker Image Exposes .htaccess File

Description

Proof of Concept

Details

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Pagekit Docker Image Exposes .htaccess File #6

Description

Pagekit Docker Image Exposes .htaccess File

Description

Proof of Concept

Details

Metadata

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Issue actions