zap-extensions icon indicating copy to clipboard operation
zap-extensions copied to clipboard

Published 20 hours ago verified publisher icon zaproxy

commonlib: add more details to "Information Leakage" vulnerability

Open joshua530 opened this issue 1 year ago • 5 comments

Adds more solutions and reference links to Information Leakage vulnerability.

Part of zaproxy/zaproxy#8056

joshua530 avatar Oct 21 '24 22:10 joshua530

All contributors have signed the CLA ✍️ ✅
Posted by the CLA Assistant Lite bot.

github-actions[bot] avatar Oct 21 '24 22:10 github-actions[bot]

I have read the CLA Document and I hereby sign the CLA

joshua530 avatar Oct 21 '24 22:10 joshua530

CHANGELOG.md should also be updated. I'm sure if you scroll a bit you can find related previous entries.

kingthorin avatar Oct 21 '24 22:10 kingthorin

My apologies for forgetting. I've made the changes.

joshua530 avatar Oct 21 '24 23:10 joshua530

Note for the team - the vulnerabilities.xml file was originally imported from the WASC website. I dont think that WASC is being maintained any more, so I dont anticipate us having to import this file again. Are we ok maintaining our own version of this, or would we rather update the rules directly?

psiinon avatar Oct 22 '24 09:10 psiinon

Rebased to address the conflict, adjust the changelog entry (more specific and under Changed), and update the tests.

thc202 avatar Jan 01 '25 06:01 thc202

Thank you!

thc202 avatar Jan 01 '25 06:01 thc202

Logo Checkmarx One – Scan Summary & Detailsf07ed8e8-29eb-41ba-96f3-1505218d7ab5

No New Or Fixed Issues Found

psiinon avatar Jan 01 '25 07:01 psiinon