There are three primary scenarios where such a directory becomes publicly indexed.
Seeing "Index of /DCIM/Personal" is more than just a privacy invasion; it’s a goldmine for malicious actors. Malicious Open Directories - ThreatNG Security index of dcim personal
In your server configuration (e.g., .htaccess for Apache), add the line Options -Indexes . This prevents the server from displaying the file list. There are three primary scenarios where such a
A standard Google dork to discover such directories is: .htaccess for Apache)