Simon Bennetts

icon indicating a website link https://www.zaproxy.org/docs/team/psiinon/ icon indicating an email [email protected]

icon location Online icon location @zaproxy project lead.

Results 628 comments of Simon Bennetts

exim: Handle a wider range of request types in Sites Tree export

Re your specific usecase, why not write a script to output whatever you want in whatever format you want? We have examples which go through the Sites Tree and History...

Add new targeted script add_junk

![Logo](https://cdn.ast.checkmarx.net/integrations/logo/Checkmarx.png) **Checkmarx One – Scan Summary & Details** – [69045638\-31ec\-4be1\-8c0a\-2d31998e1c75](https://eu.ast.checkmarx.net/projects/8ad97f3c-65e7-46bd-93b3-9350c2a9d911/scans?id=69045638-31ec-4be1-8c0a-2d31998e1c75&branch=5ubterranean%2Fmain) ### Great job, no security vulnerabilities found in this Pull Request

Support Non-Form GET/POST Requests in Sites Tree Export

Thanks for raising such a clear and well documented issue 😁 I agree with most of your statements with the exception of always including the full body. I think we...

Support Non-Form GET/POST Requests in Sites Tree Export

Agreed - right now ZAP created multiple nodes for structured data POSTs even if its just the values which have changed. It shouldnt be doing that. Just replacing the values...

ascanrules: Added Detection for SSTI when a Redirect Occurs

![Logo](https://cdn.ast.checkmarx.net/integrations/logo/Checkmarx.png) **Checkmarx One – Scan Summary & Details** – [2e3a1199\-e07e\-4723\-940a\-16e60be8a32f](https://eu.ast.checkmarx.net/projects/0da811fa-6373-42b1-bbb6-d0026285b136/scans?id=2e3a1199-e07e-4723-940a-16e60be8a32f&branch=bkollmar%2FSSTIRedirect) New Issues (5) Checkmarx found the following issues in this Pull Request Severity|Issue|Source File / Package|Checkmarx Insight ---|---|---|--- ![HIGH](https://cdn.ast.checkmarx.net/integrations/severity/High.png)|[CVE-2025-27152](https://devhub.checkmarx.com/cve-details/CVE-2025-27152)|Npm\-axios\-1\.7\.4|detailsRecommended version:...

commonlib: add more details to "Information Leakage" vulnerability

Note for the team - the vulnerabilities.xml file was originally imported from the WASC website. I dont think that WASC is being maintained any more, so I dont anticipate us...

commonlib: add more details to "Information Leakage" vulnerability

![Logo](https://cdn.ast.checkmarx.net/integrations/logo/Checkmarx.png) **Checkmarx One – Scan Summary & Details** – [f07ed8e8\-29eb\-41ba\-96f3\-1505218d7ab5](https://eu.ast.checkmarx.net/projects/0da811fa-6373-42b1-bbb6-d0026285b136/scans?id=f07ed8e8-29eb-41ba-96f3-1505218d7ab5&branch=joshua530%2Fmain) ### No New Or Fixed Issues Found

ascanrules: Path Traversal add details for dir match Alerts & reduce FPs

![Logo](https://cdn.ast.checkmarx.net/integrations/logo/Checkmarx.png) **Checkmarx One – Scan Summary & Details** – [fb8ede2c\-6d02\-403e\-afad\-c80f2c638a79](https://eu.ast.checkmarx.net/projects/0da811fa-6373-42b1-bbb6-d0026285b136/scans?id=fb8ede2c-6d02-403e-afad-c80f2c638a79&branch=kingthorin%2Fpathtrav-details) ### Great job\! No new security vulnerabilities introduced in this pull request