The server-status page (usually /server-status) allows server administrators to find out how well their server is performing.
This is a HTML page that gives the current server statistics such as the server version, up time,cpu, ram, and information about requests made to the server.
This information can be very useful if the application is sent sensitive information as GET requests. If you monitor this page you might be able to find CSRF tokens, API keys, hidden paths, and other sensitive information being sent to the server.
https://medium.com/@ghostlulzhacks/apache-server-status-a70abed83f5a
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31083bab3f083bab3fda58e08c
Apache Status Apache Server Status for kf.ismdlab.xyz (via 10.10.20.151) Server Version: Apache/2.4.41 (Ubuntu) OpenSSL/1.1.1f Server MPM: prefork Server Built: 2023-03-08T17:32:54 Current Time: Tuesday, 02-May-2023 10:40:27 UTC Restart Time: Saturday, 11-Mar-2023 06:00:38 UTC Parent Server Config. Generation: 53 Parent Server MPM Generation: 52 Server uptime: 52 days 4 hours 39 minutes 48 seconds Server load: 4.00 3.69 3.83 Total accesses: 330428109 - Total Traffic: 106058.4 GB - Total Duration: 47129646867 CPU Usage: u239.28 s1157.58 cu8080590 cs1617060 - 215% CPU load 73.3 requests/sec - 24.1 MB/second - 336.6 kB/request - 142.632 ms/request 16 requests currently being processed, 0 idle workers WWWWWWWWWWWWW..W.W..W........................................... ................................................................ ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-523902940/238/21808571W 6.740028806655130.0135.717194764.00 10.10.20.150http/1.1cloud.philsys.gov.ph:8080GET / HTTP/1.0 1-523910670/108/21704513W 3.020028280665950.047.697098929.50 10.10.20.150http/1.1cloud.philsys.gov.ph:8080POST /index.php/apps/richdocuments/wopi/files/105939_ocr9jbu2lz 2-523904890/63/21374482W 1.6824028148379890.064.237239662.50 10.10.20.150http/1.1cloud.philsys.gov.ph:8080POST /index.php/apps/richdocuments/wopi/files/35311510_ocr9jbu2 3-523882800/510/21219575W 14.710027702837820.0296.176940952.50 10.10.20.150http/1.1cloud.philsys.gov.ph:8080POST /index.php/apps/richdocuments/wopi/files/35315278_ocr9jbu2 4-523886520/464/20795421W 13.270027354326630.0313.467004457.00 10.10.20.150http/1.1cloud.philsys.gov.ph:8080GET /telescope/requests HTTP/1.0 5-523865610/532/20390571W 15.700027061086420.0336.136696350.50 10.10.20.150http/1.1cloud.philsys.gov.ph:8080GET /s/238313e2934313e20393e2230323/_/;/META-INF/maven/com.atla 6-523915370/20/20074778W 0.690026478902030.042.396514275.50 10.10.20.150http/1.1cloud.philsys.gov.ph:8080GET /.git/config HTTP/1.0 7-523892850/256/19790457W 6.7821025586801300.094.706446756.50 10.10.20.150http/1.1cloud.philsys.gov.ph:8080POST /index.php/apps/richdocuments/wopi/files/2987732_ocr9jbu2l 8-523818920/1542/19249157W 42.140024858614270.0618.816178777.50 10.10.20.150http/1.1cloud.philsys.gov.ph:8080GET /?rest_route=/wp/v2/users/ HTTP/1.0 9-523866320/771/18382331W 23.230024000858760.0516.075817730.50 10.10.20.150http/1.1cloud.philsys.gov.ph:8080POST /index.php/apps/richdocuments/wopi/files/35434535_ocr9jbu2 10-523916860/0/17577583W 0.000022872537300.00.005558280.00 10.10.20.150http/1.1cloud.philsys.gov.ph:8080GET /server-status HTTP/1.0 11-523786620/1797/15839693W 51.230021096696190.0824.475066552.50 10.10.20.150http/1.1cloud.philsys.gov.ph:8080GET /debug/default/view?panel=config HTTP/1.0 12-523892880/384/14175745W 11.080019200128750.0389.964568559.00 10.10.20.150http/1.1cloud.philsys.gov.ph:8080GET /.vscode/sftp.json HTTP/1.0 13-52-0/0/11639321. 0.0060016325821300.00.003700723.75 ::1http/1.1cloud.philsys.gov.ph:8080OPTIONS * HTTP/1.0 14-52-0/0/10177686. 0.0058014877129270.00.003384409.75 ::1http/1.1cloud.philsys.gov.ph:8080OPTIONS * HTTP/1.0 15-523890510/401/9016676W 12.160013109621370.0207.922823515.50 10.10.20.150http/1.1cloud.philsys.gov.ph:8080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor 16-52-0/0/7680323. 0.0059011398069470.00.002270179.00 ::1http/1.1cloud.philsys.gov.ph:8080OPTIONS * HTTP/1.0 17-523892900/394/6511356W 10.93009891873490.0330.801872017.75 10.10.20.150http/1.1cloud.philsys.gov.ph:8080POST /index.php/apps/richdocuments/wopi/files/35269150_ocr9jbu2 18-52-0/0/5559859. 0.005408627840330.00.001552078.63 ::1http/1.1cloud.philsys.gov.ph:8080OPTIONS * HTTP/1.0 19-52-0/0/4445761. 0.004407372027020.00.001263196.00 ::1http/1.1cloud.philsys.gov.ph:8080OPTIONS * HTTP/1.0 20-523892930/382/3559319W 10.85006165860520.0225.601070219.38 10.10.20.150http/1.1cloud.philsys.gov.ph:8080GET /info.php HTTP/1.0 21-52-0/0/2803585. 0.0058505200659600.00.00905979.81 ::1http/1.1cloud.philsys.gov.ph:8080OPTIONS * HTTP/1.0 22-52-0/0/2305133. 0.0077404424584480.00.00841502.63 ::1http/1.1cloud.philsys.gov.ph:8080OPTIONS * HTTP/1.0 23-52-0/0/1810204. 0.0059903909947320.00.00835004.56 ::1http/1.1cloud.philsys.gov.ph:8080OPTIONS * HTTP/1.0 24-52-0/0/1618269. 0.0012103531502170.00.00747741.63 ::1http/1.1cloud.philsys.gov.ph:8080OPTIONS * HTTP/1.0 25-52-0/0/1390168. 0.0081703139006690.00.00604715.44 ::1http/1.1cloud.philsys.gov.ph:8080OPTIONS * HTTP/1.0 26-52-0/0/1291712. 0.0084103150960430.00.00608545.25 ::1http/1.1cloud.philsys.gov.ph:8080OPTIONS * HTTP/1.0 27-52-0/0/1061793. 0.0079302521142890.00.00481529.38 ::1http/1.1cloud.philsys.gov.ph:8080OPTIONS * HTTP/1.0 28-52-0/0/865731. 0.0083502173650650.00.00372269.94 ::1http/1.1cloud.philsys.gov.ph:8080OPTIONS * HTTP/1.0 29-52-0/0/803239. 0.00224102066977880.00.00320807.06 ::1http/1.1cloud.philsys.gov.ph:8080OPTIONS * HTTP/1.0 30-52-0/0/620295. 0.00211801828604790.00.00318315.25 ::1http/1.1cloud.philsys.gov.ph:8080OPTIONS * HTTP/1.0 31-52-0/0/510359. 0.00199801589431530.00.00241952.28 ::1http/1.1cloud.philsys.gov.ph:8080OPTIONS * HTTP/1.0 32-52-0/0/420256. 0.00226801321952090.00.00191981.33 ::1http/1.1cloud.philsys.gov.ph:8080OPTIONS * HTTP/1.0 33-52-0/0/375959. 0.00227601192844860.00.00148246.13 ::1http/1.1cloud.philsys.gov.ph:8080OPTIONS * HTTP/1.0 34-52-0/0/331464. 0.0020970999632890.00.00133856.83 ::1http/1.1cloud.philsys.gov.ph:8080OPTIONS * HTTP/1.0 35-52-0/0/313404. 0.0022810963187350.00.00127173.56 ::1http/1.1cloud.philsys.gov.ph:8080OPTIONS * HTTP/1.0 36-52-0/0/267090. 0.0048490992094080.00.00142506.86 ::1http/1.1cloud.philsys.gov.ph:8080OPTIONS * HTTP/1.0 37-52-0/0/242895. 0.0049780931854990.00.00121194.59 ::1http/1.1cloud.philsys.gov.ph:8080OPTIONS * HTTP/1.0 38-52-0/0/236002. 0.0051990817112150.00.0098293.64 ::1http/1.1cloud.philsys.gov.ph:8080OPTIONS * HTTP/1.0 39-52-0/0/218566. 0.0052020853474850.00.00156799.06 ::1http/1.1cloud.philsys.gov.ph:8080OPTIONS * HTTP/1.0 40-52-0/0/192010. 0.0051900719504220.00.0086538.08 ::1http/1.1cloud.philsys.gov.ph:8080OPTIONS * HTTP/1.0 41-52-0/0/193114. 0.0051970662662980.00.0088947.89 ::1http/1.1cloud.philsys.gov.ph:8080OPTIONS * HTTP/1.0 42-52-0/0/167914. 0.0051980626544240.00.0087400.73 ::1http/1.1cloud.philsys.gov.ph:8080OPTIONS * HTTP/1.0 43-52-0/0/149519. 0.0052010539853410.00.0071382.55 ::1http/1.1cloud.philsys.gov.ph:8080OPTIONS * HTTP/1.0 44-52-0/0/141464. 0.0051870511446720.00.0054170.62 ::1http/1.1cloud.philsys.gov.ph:8080OPTIONS * HTTP/1.0 45-52-0/0/114674. 0.0049530489285790.00.0056593.83 ::1http/1.1cloud.philsys.gov.ph:8080OPTIONS * HTTP/1.0 46-52-0/0/101772. 0.0051910405527920.00.0042778.83 ::1http/1.1cloud.philsys.gov.ph:8080OPTIONS * HTTP/1.0 47-52-0/0/97098. 0.0051800407800120.00.0039063.67 ::1http/1.1cloud.philsys.gov.ph:8080OPTIONS * HTTP/1.0 48-52-0/0/78611. 0.0051290336322220.00.0028785.62 ::1http/1.1cloud.philsys.gov.ph:8080OPTIONS * HTTP/1.0 49-52-0/0/67579. 0.0052000294719180.00.0024356.94 ::1http/1.1cloud.philsys.gov.ph:8080O