-
90028 Insecure HTTP Method (InsecureHttpMethodScanRule) Active beta
-
While compiling I noticed the following warning for [CWE-479](https://cwe.mitre.org/data/definitions/479.html) from GCC 14:
```
depbase=`echo CRT.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\
gcc-14 -D…
BenBE updated
19 hours ago
-
Plugin ID: 10004
-
10094 Base64 Disclosure (Base64Disclosure) Passive alpha
-
10097 Hash Disclosure (HashDisclosureScanRule) Passive release
-
2 Private IP Disclosure (InfoPrivateAddressDisclosureScanRule) Passive release
-
90022 Application Error Disclosure (ApplicationErrorScanRule) Passive release
-
### Is your feature request related to a problem? Please describe.
Use of CWE-200 is now discouraged as other more specific alternatives exist.
![image](https://github.com/user-attachments/asset…
-
Several of these CWE vulnerabilities could be mitigated with KERI.
https://cwe.mitre.org/top25/archive/2023/2023_stubborn_weaknesses.html
-
10036 HTTP Server Response Header (ServerHeaderInfoLeakScanRule) Passive release