Print Page | Close Window

Issue with HP WebInspect

Printed From: One Stop Testing
Category: Types Of Software Testing @ OneStopTesting
Forum Name: Security Testing @ OneStopTesting
Forum Discription: Discuss All that is need to be known about Security Testing, All Security Issues and its Tools.
URL: http://forum.onestoptesting.com/forum_posts.asp?TID=6468
Printed Date: 04Dec2024 at 11:19am


Topic: Issue with HP WebInspect
Posted By: sovikmukh
Subject: Issue with HP WebInspect
Date Posted: 18May2009 at 3:25am

Hi,

I used HP Web Inspect to scan an online application, using both a custom policy and the standard policy. My custom policy included an check for Cross Site Scripting(No-5649), which is also included in the Standard Policy.

On scanning, Webinspect was able to capture a Threat related to the above category when using the standard policy. But it did not capture any threat when I used the custom policy in same scan.(even though it had gone through the same urls both the time)Confused

I have used the threat no 5649 just as an example. I am facing this issue for multiple threats.Angry

Can anybody please help me out with this?

Thanks



-------------
Test to Break



Print Page | Close Window