Description
The web application exposes Node.js Debugger port. It's not recommended to have Node.js Debugger service publicly accessible as the debugger has full access to the Node.js execution environment and an attacker may be able to execute arbitrary javascript code.
Remediation
Disable Debugger or restrict access to it
References
Related Vulnerabilities
Magento Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2019-7929)
CodeIgniter weak encryption key
OpenSSL Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2019-1551)
WordPress Plugin Simple Ads Manager Multiple Vulnerabilities (2.6.96)
MODX Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2014-8775)