I came across a word in the Burp Suite response section that I had never seen or noticed before. ETag. I did some research on what this was, but unfortunately I couldn't understand anything because I was not knowledgeable in the theoretical part of the job.
As time progresses, I will learn what ETag is. But what I want to ask now is a little different.
The two values ??in the Burp Suite request are:
If-Modified-Since: Wed, 30 Dec 2020 08:46:04 GMT
If-None-Match: W / "5f ***** c-d **" (I hid it on purpose)
And this one in response:
ETag: "5f ***** c-d **"
Note: Server: nginx / 1.14.0 (Ubuntu)
Is this a vulnerability? If it is a vulnerability, how can attackers take advantage of it?
I am very curious if this is indeed a reportable thing.