Default vulnerabilities are not working · Issue #1 · rapid7/hackazon · GitHub
Skip to content
This repository was archived by the owner on May 18, 2021. It is now read-only.
This repository was archived by the owner on May 18, 2021. It is now read-only.

Default vulnerabilities are not working  #1

Description

@Sergicles

Hi All

Just wondering about the current master...

It seems like the default vulnerabilities are hit and miss. As an authenticated user, for instance, one command injection works. SQL Injections don't seem to work (some, not all), although HTTP error is returned. It's not set to blind, so I am not sure if this is the expected bahaviour or something is not working well in there.

For example, adding SQL injection to any search page fields doesn't seem to work on my installation.

Any advise would be great. Thanks!

Metadata

Metadata

Assignees

No one assigned

    Type

    No type

    Fields

    No fields configured for issues without a type.

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions