ZAP by Checkmarx Scanning Report
Generated on Mon, 8 Dec 2025 02:58:51 ZAP Version: 2.16.1 ZAP by Checkmarx
| # | Name | Impact |
|---|---|---|
| 1 | Authentication Request Identified [1] |
The given request has been identified as an authentication request. The 'Other Info' field contains a set of key=value lines which identify any relevant fields. If the request is in a context which has an Authentication Method set to "Auto-Detect" then this rule will change the authentication to match the request identified.
|
| 2 | Session Management Response Identified [1] |
The given response has been identified as containing a session management token. The 'Other Info' field contains a set of header tokens that can be used in the Header Based Session Management Method. If the request is in a context which has a Session Management Method set to "Auto-Detect" then this rule will change the session management to use the tokens identified.
|
| 3 | User Agent Fuzzer [1] |
Check for differences in response based on fuzzed User Agent (eg. mobile sites, access as a Search Engine Crawler). Compares the response statuscode and the hashcode of the response body with the original response.
|