search

zaproxy / zaproxy

The ZAP by Checkmarx Core project
https://www.zaproxy.org
Apache License 2.0
12.75k stars 2.28k forks source link

Retest doesn't reset between ZAP sessions #7147

Closed kingthorin closed 2 years ago

kingthorin commented 2 years ago

Describe the bug

Launch ZAP, scan something, open the Retest dialog. Start a new ZAP session, don't bother scanning anything, just re-open the Retest dialog. Note it still has the old alerts tree displayed.

Steps to reproduce the behavior

  1. Launch ZAP. (Ensure passive scan rules are enabled.)
  2. Launch a browser via Browser launch, and navigate to scanme.nmap.org (or whatever).
  3. Note there are alerts in the tree.
  4. Visit Tools > Retest ... (or use the context menu).
  5. Close the dialog.
  6. Start a new ZAP session.
  7. Visit Tools > Retest ...
  8. Note the original Alert Tree is still shown.

Similarly if you serially open saved sessions and try Retest it will display the alert tree from the first time the dialog was displayed.

Expected behavior

The Retest alert tree should be updated when the session changes.

Software versions


OWASP ZAP
Version: Dev Build
---
Installed Add-ons: [[id=alertFilters, version=13.0.0],
[id=ascanrules, version=45.0.0], [id=ascanrulesAlpha,
version=36.0.0], [id=ascanrulesBeta, version=40.0.0],
[id=automation, version=0.13.0], [id=bugtracker,
version=3.0.0], [id=callhome, version=0.3.0], [id=commonlib,
version=1.8.0], [id=custompayloads, version=0.11.0],
[id=domxss, version=12.0.0], [id=encoder, version=0.6.0],
[id=exim, version=0.1.0], [id=fuzz, version=13.6.0],
[id=graaljs, version=0.2.0], [id=groovy, version=3.1.0],
[id=help, version=14.0.0], [id=hud, version=0.13.0],
[id=imagelocationscanner, version=3.0.0], [id=invoke,
version=11.0.0], [id=jython, version=12.0.0], [id=network,
version=0.2.0], [id=oast, version=0.10.0], [id=openapi,
version=27.0.0], [id=pscanrules, version=39.0.0],
[id=pscanrulesAlpha, version=35.0.0], [id=pscanrulesBeta,
version=28.0.0], [id=quickstart, version=33.0.0],
[id=replacer, version=9.0.0], [id=reports, version=0.12.0],
[id=requester, version=6.0.0], [id=retest, version=0.3.0],
[id=retire, version=0.11.0], [id=scripts, version=30.0.0],
[id=selenium, version=15.7.0], [id=soap, version=13.0.0],
[id=spider, version=0.1.0], [id=spiderAjax, version=23.7.0],
[id=sstiscanner, version=1.0.0], [id=wappalyzer,
version=21.10.0], [id=webdriverwindows, version=36.0.0],
[id=websocket, version=25.0.0]]
---
Operating System: Windows 10
Java Version: Eclipse Adoptium 11.0.13
System's Locale: en_US
Display Locale: en_GB
Format Locale: en_US
ZAP Home Directory: C:\Users\user\OWASP ZAP_D\
ZAP Installation Directory: C:\Users\user\Desktop\zap-ws\zaproxy\zap\bin\main\
Look and Feel: FlatLaf Dark (com.formdev.flatlaf.FlatDarkLaf)

Screenshots

image

Errors from the zap.log file

None

Additional context

N/A

Would you like to help fix this issue?

github-actions[bot] commented 2 years ago

This issue has been automatically locked since there has not been any recent activity after it was closed. Please open a new issue for related bugs.