Implementation suggestion.
Posted: Tue Feb 23, 2021 5:23 pm
Hello, good morning everyone, I am one of the researchers already considered on the site for a while and I wonder today, because they have not yet created Vulnerability type: other vulnerabilities like
SQLi - Fault authenticity checking software could search for text messages like "Warning: mysql_query ():",
IDOR - The fault authenticity verification software could be made so that from the moment the researcher makes the report he changes the "ID", if making changes considered in the page the failure would then be confirmed as a positive failure.
SQLi - Fault authenticity checking software could search for text messages like "Warning: mysql_query ():",
IDOR - The fault authenticity verification software could be made so that from the moment the researcher makes the report he changes the "ID", if making changes considered in the page the failure would then be confirmed as a positive failure.