jitendra-90

Getting High Alert ("SQL injection may be possible"), whie we are not using sql in the application.

7

### Describe the bug Getting too many High Alert related to SQL injection, while we not using sql dababase in the application, we are using api with encrypted parameters, still...

"NoSQL Injection - MongoDB" high alert showing in report but we are not using mongoDB

5

### Describe the bug "NoSQL Injection - MongoDB" high alert showing in report but we are not using mongoDB ### Steps to reproduce the behavior "NoSQL Injection - MongoDB" high...

Source Code Disclosure - File Inclusion

6

### Describe the bug I am not able to replicate the issue. there in reponse getting not found or bad request, then how can we say that this "Source Code...

LDAP Injection

4

### Describe the bug Getting LDAP Injection High alert on the url while that url is not exists in the application. **Request:** _GET https://pentestingapp.azurewebsites.net/.git HTTP/1.1 host: pentestingapp.azurewebsites.net User-Agent: Mozilla/5.0 (Windows...

Remote Code Execution - Shell Shock on Windows OS

7

### Describe the bug I am getting "Remote Code Execution - Shell Shock" High Alert in the report, while I Deployed my application on Windows server not on Linux or...