search

Facetorushikesh / issue_demo

0 stars 0 forks source link

Fix DAST Issue : Timestamp Disclosure - Unix #203

Closed Facetorushikesh closed 3 months ago

Facetorushikesh commented 4 months ago

Scan Date: Wed, 1 May 2024 01:44:12 URLs Impacted:

DAST Scan Results | CWE ID | Severity | Description | Location | Evidence | Solution | | --- | --- | --- | --- | --- | --- | | [200](https://cwe.mitre.org/data/definitions/200.html) | Low | The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information. | **Method:** GET **Parameter:** | 1707791226, 1708385985, 1708904385, 1709329800, 1709330100, 1710891585, 1720109376 | Manually confirm that the timestamp data is not sensitive, and that the data cannot be aggregated to disclose exploitable patterns. |
Facetorushikesh commented 4 months ago

Scan Date: Wed, 1 May 2024 01:44:12 URLs Impacted:

DAST Scan Results | CWE ID | Severity | Description | Location | Evidence | Solution | | --- | --- | --- | --- | --- | --- | | [200](https://cwe.mitre.org/data/definitions/200.html) | Low | The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information. | **Method:** GET **Parameter:** | 1707791226, 1708385985, 1708904385, 1709329800, 1709330100, 1710891585, 1720109376 | Manually confirm that the timestamp data is not sensitive, and that the data cannot be aggregated to disclose exploitable patterns. |