Hello, good morning everyone, I am one of the researchers already considered on the site for a while and I wonder today, because they have not yet created Vulnerability type: other vulnerabilities like
SQLi - Fault authenticity checking software could search for text messages like "Warning: mysql_query ():",
IDOR - The fault authenticity verification software could be made so that from the moment the researcher makes the report he changes the "ID", if making changes considered in the page the failure would then be confirmed as a positive failure.
Implementation suggestion.
Who is online
Users browsing this forum: No registered users and 2 guests