Description
The web application exposes Python debugpy/ debugger port. It's not recommended to have the server publicly accessible as the debugger has full access to the Python execution environment and an attacker may be able to execute arbitrary python code.
Remediation
Disable debugger or restrict access to it
References
Related Vulnerabilities
WordPress Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2011-0701)
GoCD information disclosure (CVE-2021-43287)
Magento Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2020-9591)
WordPress 5.0.x Multiple Vulnerabilities (5.0 - 5.0.17)
WordPress Plugin Be POPIA Compliant Information Disclosure (1.1.5)