{% for css in ['bootstrap-3.3.2.min.css'] %} {% endfor %}

Application Security Scan for {{ target_domain }}

Meta-data

This report contains the application security scan results for the w3af scan of the {{ target_domain }} which finished {{ get_current_date() }}

Configured target URLs

    {% for target_urls in target_urls %}
  • {{ target_urls }}
  • {% endfor %}

Enabled plugins

    {% for plugin_type in enabled_plugins %}
  • {{ plugin_type }}
      {% for plugin_name in enabled_plugins[plugin_type] %}
    • {{ plugin_name }}
    • {% endfor %}
  • {% endfor %}
{% for finding in findings %}

{{ finding.get_name() }}

{{ finding.get_severity()|severity_text|safe }}

Summary

{{ finding.get_desc() }}

{% if finding.has_db_details() == True %}

Description

{{ finding.get_long_description()|render_markdown|safe }} {% endif %}
    {% if finding.get_url() != None %}
  • Vulnerable URL: {{ finding.get_url() }}
  • {% endif %} {% if finding.get_token_name() != None %}
  • Vulnerable Parameter: {{ finding.get_token_name() }}
  • {% endif %}
{% if finding.has_db_details() %}

Fix

{{ finding.get_fix_guidance()|render_markdown|safe }} {% if finding.get_references() %}

References

{% endif %}
{% endif %} {% if finding.get_id() %}

HTTP proof

{% for id in finding.get_id() %}
{{ id|request }}
{{ id|response }}
{% endfor %} {% endif %}
{% endfor %}

URLs found during application scan

    {% for url in known_urls %}
  • {{ url }}
  • {% endfor %}
{% if debug_log %}

Scan log

{% for timestamp, level, message in debug_log %} {% if level == 'error' %} {% else %} {% endif %} {% endfor %}
Timestamp Log level Message
{{ timestamp }} {{ level }} {{ message }}
{% endif %}