search

rht-labs / owasp-zap-openshift

A Docker build for OWASP Zed Attack Proxy to be used in CI/CD pipelines
26 stars 37 forks source link

exceptions.UnicodeDecodeError when running #5

Open magick93 opened 6 years ago

magick93 commented 6 years ago

Hello

When I run this, I get the following error.

Total of 11 URLs
PASS: Cookie No HttpOnly Flag [10010]
PASS: Cookie Without Secure Flag [10011]
PASS: Incomplete or No Cache-control and Pragma HTTP Header Set [10015]
PASS: Cross-Domain JavaScript Source File Inclusion [10017]
PASS: Content-Type Header Missing [10019]
PASS: Information Disclosure - Debug Error Messages [10023]
PASS: Information Disclosure - Sensitive Informations in URL [10024]
PASS: Information Disclosure - Sensitive Information in HTTP Referrer Header [10025]
PASS: HTTP Parameter Override [10026]
PASS: Information Disclosure - Suspicious Comments [10027]
PASS: Viewstate Scanner [10032]
PASS: Secure Pages Include Mixed Content [10040]
PASS: Weak Authentication Method [10105]
PASS: Absence of Anti-CSRF Tokens [10202]
PASS: Private IP Disclosure [2]
PASS: Session ID in URL Rewrite [3]
PASS: Script Passive Scan Rules [50001]
PASS: Insecure JSF ViewState [90001]
PASS: Charset Mismatch [90011]
PASS: Application Error Disclosure [90022]
PASS: Loosely Scoped Cookie [90033]
WARN-NEW: Web Browser XSS Protection Not Enabled [10016] x 1 
    http://myurl/api-docs/index.html
WARN-NEW: X-Frame-Options Header Not Set [10020] x 1 
    http://myurl/api-docs/index.html
WARN-NEW: X-Content-Type-Options Header Missing [10021] x 5 
    http://myurl/api-docs/index.html
    http://myurl/api-docs/favicon-32x32.png
    http://myurl/api-docs/swagger-ui.css
    http://myurl/api-docs/favicon-16x16.png
    http://myurl/api-docs/swagger-ui-standalone-preset.js
ERROR <type 'exceptions.UnicodeDecodeError'>
InfoSec812 commented 6 years ago

I have seen this happen intermittently, but I have not yet found a cause/solution. Pull requests would be welcome!