Closed

LoggedOut Page XSS and SQL Injection Warnings from ZAP #3443

jackmcelhinney created 2 years ago

ABP Framework version: v5.2.2
UI type: Angular w/ Authorization Code Flow
DB provider: EF Core
Identity Server Separated (Angular): no

After running the OWASP ZAP penetration test tool, the report shows 2 Cross Site Scripting (Reflected) warnings and 1 SQL Injection warning on the log-out page. These may be false warnings, but can these be resolved as this issue was?

4 Answer(s)

0

maliming created 2 years ago
Support Team Fullstack Developer

hi

We will check and fix this. Thanks.
0

maliming created 2 years ago
Support Team Fullstack Developer

Question Credits Refunded
0

maliming created 2 years ago
Support Team Fullstack Developer

I sent the changes to jack.xxx@xxxlarity.com.
0

jackmcelhinney created 2 years ago

Received. Thanks!

Have an answer to this question? Log in and write your answer.

Made with ❤️ on ABP v9.1.0-preview. Updated on November 11, 2024, 11:11