ZAP by Checkmarx Scanning Report
ZAP by Checkmarx Scanning Report
| Risk Level | Number of Alerts |
|---|---|
|
High
|
0
|
|
Medium
|
0
|
|
Low
|
0
|
|
Informational
|
3
|
|
False Positives:
|
0
|
For each step: result (Pass/Fail) - risk (of highest alert(s) for the step, if any).
| Name | Risk Level | Number of Instances |
|---|---|---|
| Authentication Request Identified | Informational | 2 |
| Session Management Response Identified | Informational | 2 |
| User Agent Fuzzer | Informational | 12 |
|
Informational |
Authentication Request Identified |
|---|---|
| Description |
The given request has been identified as an authentication request. The 'Other Info' field contains a set of key=value lines which identify any relevant fields. If the request is in a context which has an Authentication Method set to "Auto-Detect" then this rule will change the authentication to match the request identified.
|
| URL | http://localhost:8080/api/auth/login |
| Method | POST |
| Parameter | username |
| Attack | |
| Evidence | password |
| Other Info | userParam=username userValue=John Doe passwordParam=password |
| URL | http://localhost:8080/api/auth/login |
| Method | POST |
| Parameter | username |
| Attack | |
| Evidence | password |
| Other Info | userParam=username userValue=testuser passwordParam=password |
| Instances | 2 |
| Solution |
This is an informational alert rather than a vulnerability and so there is nothing to fix.
|
| Reference | https://www.zaproxy.org/docs/desktop/addons/authentication-helper/auth-req-id/ |
| CWE Id | |
| WASC Id | |
| Plugin Id | 10111 |
|
Informational |
Session Management Response Identified |
|---|---|
| Description |
The given response has been identified as containing a session management token. The 'Other Info' field contains a set of header tokens that can be used in the Header Based Session Management Method. If the request is in a context which has a Session Management Method set to "Auto-Detect" then this rule will change the session management to use the tokens identified.
|
| URL | http://localhost:8080/api/auth/login |
| Method | POST |
| Parameter | token |
| Attack | |
| Evidence | token |
| Other Info | json:token |
| URL | http://localhost:8080/api/auth/login |
| Method | GET |
| Parameter | token |
| Attack | |
| Evidence | token |
| Other Info | json:token |
| Instances | 2 |
| Solution |
This is an informational alert rather than a vulnerability and so there is nothing to fix.
|
| Reference | https://www.zaproxy.org/docs/desktop/addons/authentication-helper/session-mgmt-id/ |
| CWE Id | |
| WASC Id | |
| Plugin Id | 10112 |
|
Informational |
User Agent Fuzzer |
|---|---|
| Description |
Check for differences in response based on fuzzed User Agent (eg. mobile sites, access as a Search Engine Crawler). Compares the response statuscode and the hashcode of the response body with the original response.
|
| URL | http://localhost:8080/api/auth/login |
| Method | POST |
| Parameter | Header User-Agent |
| Attack | Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1) |
| Evidence | |
| Other Info | |
| URL | http://localhost:8080/api/auth/login |
| Method | POST |
| Parameter | Header User-Agent |
| Attack | Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) |
| Evidence | |
| Other Info | |
| URL | http://localhost:8080/api/auth/login |
| Method | POST |
| Parameter | Header User-Agent |
| Attack | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1) |
| Evidence | |
| Other Info | |
| URL | http://localhost:8080/api/auth/login |
| Method | POST |
| Parameter | Header User-Agent |
| Attack | Mozilla/5.0 (Windows NT 10.0; Trident/7.0; rv:11.0) like Gecko |
| Evidence | |
| Other Info | |
| URL | http://localhost:8080/api/auth/login |
| Method | POST |
| Parameter | Header User-Agent |
| Attack | Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3739.0 Safari/537.36 Edg/75.0.109.0 |
| Evidence | |
| Other Info | |
| URL | http://localhost:8080/api/auth/login |
| Method | POST |
| Parameter | Header User-Agent |
| Attack | Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36 |
| Evidence | |
| Other Info | |
| URL | http://localhost:8080/api/auth/login |
| Method | POST |
| Parameter | Header User-Agent |
| Attack | Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:93.0) Gecko/20100101 Firefox/91.0 |
| Evidence | |
| Other Info | |
| URL | http://localhost:8080/api/auth/login |
| Method | POST |
| Parameter | Header User-Agent |
| Attack | Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html) |
| Evidence | |
| Other Info | |
| URL | http://localhost:8080/api/auth/login |
| Method | POST |
| Parameter | Header User-Agent |
| Attack | Mozilla/5.0 (compatible; Yahoo! Slurp; http://help.yahoo.com/help/us/ysearch/slurp) |
| Evidence | |
| Other Info | |
| URL | http://localhost:8080/api/auth/login |
| Method | POST |
| Parameter | Header User-Agent |
| Attack | Mozilla/5.0 (iPhone; CPU iPhone OS 8_0_2 like Mac OS X) AppleWebKit/600.1.4 (KHTML, like Gecko) Version/8.0 Mobile/12A366 Safari/600.1.4 |
| Evidence | |
| Other Info | |
| URL | http://localhost:8080/api/auth/login |
| Method | POST |
| Parameter | Header User-Agent |
| Attack | Mozilla/5.0 (iPhone; U; CPU iPhone OS 3_0 like Mac OS X; en-us) AppleWebKit/528.18 (KHTML, like Gecko) Version/4.0 Mobile/7A341 Safari/528.16 |
| Evidence | |
| Other Info | |
| URL | http://localhost:8080/api/auth/login |
| Method | POST |
| Parameter | Header User-Agent |
| Attack | msnbot/1.1 (+http://search.msn.com/msnbot.htm) |
| Evidence | |
| Other Info | |
| Instances | 12 |
| Solution | |
| Reference | https://owasp.org/wstg |
| CWE Id | |
| WASC Id | |
| Plugin Id | 10104 |