NhatNH2807
commented
3 weeks ago I received this defect and am currently getting an API key error for OWASP ZAP when trying to integrate.
-
Steps tried: Checked API key configuration and authenticated with OWASP ZAP.
-
Result: API key is now invalid or not working, resulting in inability to get detailed scan data.
Plan:
-
Continue to check API key configuration or request a new key from the administrator.
-
After receiving a valid key, I will proceed to check the detailed vulnerability storage process and update the status of this defect. -Below are some images, please make sure when integrating the API Key and port will be correct with OWASP ZAP
Module : OWASP ZAP Integration Description: Defect: When integrating OWASP ZAP, the system only stores basic information of vulnerability scan results without storing details about each detected vulnerability. Expected Result: The system must store full details about vulnerabilities detected by OWASP ZAP, including description, severity, and other detailed information Type:Integration Severity:High Created Date:29/10/2024