498 matches found
Drupal Directory Listing
The scanner has detected publicly accessible Drupal directory index on the target web application. This may expose information relating to the web server to an attacker which may allow for further exploitation techniques to be leveraged, possibly leading to a compromise of the target server No...
WordPress Configuration Backup Files Detected
The scanner has detected publicly accessible WordPress configuration files on the target web application. These files likely contains extremely sensitive server information including administrative database credentials. This may present an attacker with an exploit vector which could be leveraged...
WordPress User Registration Form Detected
This is an informational plugin to inform the user that the scanner has detected a publicly accessible WordPress User Registration Form on the target application. This may present an attacker with an exploit vector which could be leveraged using other techniques, such as a Brute-Force or Dictiona...
Scan Aborted After Being Logged Out
This plugin is raised when the scanner has been logged out and has not been able to authenticate back against the web application using the options provided in the scan policy. This may be due to some links accessed by the scanner during the scan that could have invalidated the session used by th...
Scan Logged-out Intermittently
This plugin is raised when the scanner detected that it has been logged out during the scan, but has been able to authenticate back against the web application using the options provided in the scan policy. Such case may occur if the scanner accesses a link that led the session to be closed. Chec...
Drupal User Registration Form Detected
This is an informational plugin to inform the user that the scanner has detected a publicly accessible Drupal User Registration Form on the target application. This may present an attacker with an exploit vector which could be leveraged using other techniques, such as a Brute-Force or Dictionary...
Selenium Crawl Succeeded
This is an informational notice that the scanner was able to successfully perform the crawling scripts provided in the policy. No source data...
TLS 1.1 Weak Protocol
The remote server offers deprecated TLS 1.1 protocol. No source data...
Selenium Crawl Failed
This plugin is raised when the scanner has not been able to crawl the web application using the Selenium scripts provided in the scan policy. Check the output of the plugin to get an explanation of the issue encountered by the scan. No source data...
HTTP Server Authentication Succeeded
This is an informational notice that the scanner was able to successfully authenticate against the web server using HTTP server credentials provided in the scan policy. No source data...
Login Form Detected
This is an informational notice that the scanner identified a potential login form that could be used by the scanner to authenticate and have access to additional pages for extending its coverage. No source data...
WordPress Administration Panel Login Form Detected
WordPress Administration Panel has been detected on the target web application. This may present an attacker with an exploit vector which could be leveraged using other techniques, such as a Brute-Force or Dictionary Attack, allowing an attacker to gain access to administrative functionality. No...
Selenium Authentication Failed
This plugin is raised when the scanner has not been able to authenticate against the web application using the Selenium script provided in the scan policy. Check the output of the plugin to get an explanation of the issue encountered by the scan. No source data...
Selenium Authentication Succeeded
This is an informational notice that the scanner was able to successfully authenticate against the web application using the Selenium script provided in the scan policy. No source data...
Joomla! Administration Panel Login Form Detected
Joomla! Administration Panel has been detected on the target web application. This may present an attacker with an exploit vector which could be leveraged using other techniques, such as a Brute-Force or Dictionary Attack, allowing an attacker to gain access to administrative functionality. No...
Screenshot
Screenshot of the target web page, see attached image. This screenshot should show you the target page we are launching the scan against. If the image is not of the intended target page, please check the provided url in the scan configuration. No source data...
Cookie Authentication Failed
This plugin is raised when the scanner has not been able to authenticate against the web application using the cookies provided in the scan policy. Check the output of the plugin to get an explanation of the issue encountered by the scan. No source data...
Cookie Authentication Succeeded
This is an informational notice that the scanner was able to successfully authenticate against the web application using the cookies provided in the scan policy. No source data...
Technologies Detected
This is an informational plugin to inform the user what technologies the framework has detected on the target application, which can then be examined and checked for known vulnerable software versions No source data...
Login Form Authentication Succeeded
This is an informational notice that the scanner was able to successfully authenticate against the web application using the login form credentials provided in the scan policy. No source data...