Closed

LoggedOut Page XSS and SQL Injection Warnings from ZAP #3443

jackmcelhinney created one year ago

ABP Framework version: v5.2.2
UI type: Angular w/ Authorization Code Flow
DB provider: EF Core
Identity Server Separated (Angular): no

After running the OWASP ZAP penetration test tool, the report shows 2 Cross Site Scripting (Reflected) warnings and 1 SQL Injection warning on the log-out page. These may be false warnings, but can these be resolved as this issue was?

4 Answer(s)

0

maliming created one year ago
Support Team Fullstack Developer

hi

We will check and fix this. Thanks.
0

maliming created one year ago
Support Team Fullstack Developer

Question Credits Refunded
0

maliming created one year ago
Support Team Fullstack Developer

I sent the changes to jack.xxx@xxxlarity.com.
0

jackmcelhinney created one year ago

Received. Thanks!

Have an answer to this question? Log in and write your answer.

Made with ❤️ on ABP v8.2.0-preview Updated on March 25, 2024, 15:11