WORKTERRAProject Type: software

WORKTERRA

Uploaded image for project: 'WORKTERRA'
  1. WORKTERRA
  2. WT-12633

[Security] ZAP- Scan report Issue : Application Error Disclosure

    Details

    • Type: Bug
    • Status: Closed
    • Priority: Low
    • Resolution: Cannot Reproduce
    • Affects Version/s: None
    • Fix Version/s: None
    • Component/s: None
    • Labels:
      None
    • Environment:
      Production
    • Bug Severity:
      Medium
    • Level:
      Admin, Partner
    • Module:
      BenAdmin - Security
    • Reported by:
      Harbinger
    • Company:
      All Clients/Multiple Clients
    • Item State:
      Development - In Analysis

      Description

      This page contains an error/warning message that may disclose sensitive information like the location of the file that produced the unhandled exception. This information can be used to launch further attacks against the web application. The alert could be a false positive if the error message is found inside a documentation page.

      For more details please refer attached HTML report.

      CC SamirRakesh RoyJaideep Vinchurkaranirudha joshi

        Attachments

        1. EnrollNowWithPartnerLogin.html
          48 kB
          Prasad Pise
        2. InternalErrorScreen.jpg
          290 kB
          Santosh Balid
        3. SearchEmp_Spider.html
          48 kB
          Prasad Pise
        4. StaticReport_Spider.html
          53 kB
          Prasad Pise

          Issue Links

          relates to

          Task - A task that needs to be done. NF-2714 Vulnerability Assessment and Penetration Testing for Workterra on Azure US environment.

          • Medium - Has the potential to affect progress.
          • To Do

            Activity

            Transition Time In Source Status Execution Times
            Santosh Balid (Inactive) made transition -
            Open In Development
            		6d 6h 6m 1
            Sachin Hingole (Inactive) made transition -
            In Development In LB Testing
            		15d 18h 16m 1
            Rakesh Roy (Inactive) made transition -
            In LB Testing Reopen in Local
            		13d 13m 1
            Rakesh Roy (Inactive) made transition -
            Reopen in Local In Development
            		3s 1
            Santosh Balid (Inactive) made transition -
            In Development Rejected
            		50d 3h 25m 1
            Prasad Pise (Inactive) made transition -
            Rejected Closed
            		2h 50m 1

              People

              Assignee:
              prasadp Prasad Pise (Inactive)
              Reporter:
              prasadp Prasad Pise (Inactive)
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

                Dates

                Created:
                Updated:
                Resolved: