误报率挺高 - Githubissues

chushuai / wscan

Wscan is a web security scanner that focuses on web security, dedicated to making web security accessible to everyone.

Other

513 stars 63 forks source link

Closed MAOGE555 closed 2 months ago

MAOGE555 commented 9 months ago

大佬，误报率好高呀，基本上我扫啥网站都能扫出来一堆SQL注入

chushuai commented 8 months ago

能否提供一下屏幕截图，或者发送一下扫描的目标?

chushuai commented 8 months ago

@MAOGE555 感谢，涉及到隐私我先把报告删除了。

MAOGE555 commented 8 months ago

好的^_^

chushuai commented 8 months ago

基于真假的SQL注入，我下个版本将会把True、False测试的快照都保存到结果中，以便于排查问题。

MAOGE555 commented 8 months ago

nb，期待下个版本

chushuai commented 8 months ago

chushuai commented 2 months ago

没有问题的话，先关闭这个issue