OWASP ZAP wavsep results

Generated: 2017-11-15 04:54

Total Score

61%

ZAP Version: D-2017-11-13
URLs found: 1901

Top Level Scores

Top Level

Pass

Fail

Score

Chart

DOM-XSS

LFI

403

395

50%

Obsolete-Files

100%

Obsolete-Files#

Plugin	ms	Reqs	Quality
Path Traversal	0:03:17.658	39308	release
Remote File Inclusion	0:03:18.757	24939	release
Server Side Include	0:03:17.128	10168	release
Cross Site Scripting (Reflected)	0:03:16.965	7499	release
Cross Site Scripting (Persistent) - Prime	0:03:13.943	2577	release
Cross Site Scripting (Persistent) - Spider	0:03:10.699	1960	release
Cross Site Scripting (Persistent)	0:01:56.444	0	release
SQL Injection	0:03:31.177	62559	release
Server Side Code Injection	0:03:17.590	20616	release
Remote OS Command Injection	0:03:20.498	82461	release
Directory Browsing	0:03:11.526	1960	release
External Redirect	0:03:17.427	22715	release
Buffer Overflow	0:03:13.629	2424	release
Format String Error	0:03:14.888	7228	release
CRLF Injection	0:03:16.967	18037	release
Parameter Tampering	0:03:17.003	16152	release
Script Active Scan Rules	0:00:00.001	0	release
Source Code Disclosure - SVN	0:03:01.884	1867	beta
Source Code Disclosure - /WEB-INF folder	0:00:00.011	4	beta
Remote Code Execution - Shell Shock	0:03:16.364	5153	beta
Anti CSRF Tokens Scanner	0:01:12.117	609	beta
Heartbleed OpenSSL Vulnerability	0:00:00.014	3	beta
Cross-Domain Misconfiguration	0:00:00.039	2	beta
Source Code Disclosure - CVE-2012-1823	0:02:43.842	1611	beta
Remote Code Execution - CVE-2012-1823	0:03:16.086	3920	beta
Session Fixation	0:00:01.880	0	beta
SQL Injection - MySQL	0:25:00.406	17411	beta
SQL Injection - Hypersonic SQL	0:03:17.024	15461	beta
SQL Injection - Oracle	0:03:17.404	15452	beta
SQL Injection - PostgreSQL	0:03:17.431	15452	beta
Advanced SQL Injection	0:25:47.488	591530	beta
XPath Injection	0:03:18.400	7731	beta
XML External Entity Attack	0:00:01.510	0	beta
Generic Padding Oracle	0:01:40.212	2	beta
Expression Language Injection	0:03:13.600	2542	beta
Backup File Disclosure	0:03:10.008	66328	beta
Integer Overflow Error	0:03:15.536	9512	beta
Insecure HTTP Method	0:03:10.364	1960	beta
HTTP Parameter Pollution scanner	0:01:12.985	560	beta
Possible Username Enumeration	0:00:00.001	0	beta
Source Code Disclosure - Git	0:00:14.171	0	alpha
Source Code Disclosure - File Inclusion	0:35:12.385	7784	alpha
Httpoxy - Proxy Header Misuse	0:03:17.163	7840	alpha
LDAP Injection	2:29:19.868	17248	alpha
SQL Injection - SQLite	0:03:57.485	101076	alpha
Cross Site Scripting (DOM Based)	0:03:25.647	133	alpha
SQL Injection - MsSQL	0:03:18.409	12377	alpha
Example Active Scanner: Denial of Service	0:01:25.054	0	alpha
An example active scan rule which loads data from a file	0:01:35.816	0	alpha
SOAP Action Spoofing	0:00:01.342	0	alpha
SOAP XML Injection	0:01:48.495	0	alpha
Relative Path Confusion	0:03:06.042	1886	alpha
Apache Range Header DoS (CVE-2011-3192)	0:03:12.473	1968	alpha
User Agent Fuzzer	0:03:17.264	13685	alpha
HTTP Only Site	0:00:00.034	0	alpha
Proxy Disclosure	0:03:17.446	15680	alpha
ELMAH Information Leak	0:00:00.010	1	alpha
Trace.axd Information Leak	0:00:11.881	70	alpha
HTTPS Content Available via HTTP	0:00:00.949	0	alpha
Cookie Slack Detector	0:03:17.141	13258	alpha

Total	6:04:25	-	-