SQL注入误报 - Githubissues

chushuai / wscan

Wscan is a web security scanner that focuses on web security, dedicated to making web security accessible to everyone.

Other

537 stars 66 forks source link

Closed york-cmd closed 8 months ago

york-cmd commented 9 months ago

当页面被waf拦截时,页面为403会检测出boolean注入而且全站所有参数都报注入点

chushuai commented 8 months ago

最新版已修复, 麻烦验证一下 @york-cmd https://github.com/chushuai/wscan/releases

york-cmd commented 8 months ago

大佬该问题已修复

另外是否可以优化一下如果没有漏洞的情况下不输出报告呢?