Hi,
someone reported a vulnerability on a website I am in charge of. I tried the URL and parameters given in the report and could not reproduce the problem. I even checked the web server logs and found that this specific URL always replied with a 403 status when given the parameters in question. Thus, we absolutely cannot reproduce the vulnerability.
Can we somehow contest the report, have it marked wrong, or deleted?
Thanks
Uwe
How to react to a non-reproducable vulnerability report
Re: How to react to a non-reproducable vulnerability report
Please contact with researcherutrenkner wrote: ↑Fri Apr 24, 2020 9:08 amHi,
someone reported a vulnerability on a website I am in charge of. I tried the URL and parameters given in the report and could not reproduce the problem. I even checked the web server logs and found that this specific URL always replied with a 403 status when given the parameters in question. Thus, we absolutely cannot reproduce the vulnerability.
Can we somehow contest the report, have it marked wrong, or deleted?
Thanks
Uwe
Who is online
Users browsing this forum: No registered users and 2 guests