Issue with HP WebInspect
Printed From: One Stop Testing
Category: Types Of Software Testing @ OneStopTesting
Forum Name: Security Testing @ OneStopTesting
Forum Discription: Discuss All that is need to be known about Security Testing, All Security Issues and its Tools.
URL: http://forum.onestoptesting.com/forum_posts.asp?TID=6468
Printed Date: 17Nov2024 at 7:50pm
Topic: Issue with HP WebInspect
Posted By: sovikmukh
Subject: Issue with HP WebInspect
Date Posted: 18May2009 at 3:25am
|
Hi, I used HP Web Inspect to scan an online application, using both a custom policy and the standard policy. My custom policy included an check for Cross Site Scripting(No-5649), which is also included in the Standard Policy. On scanning, Webinspect was able to capture a Threat related to the above category when using the standard policy. But it did not capture any threat when I used the custom policy in same scan.(even though it had gone through the same urls both the time) I have used the threat no 5649 just as an example. I am facing this issue for multiple threats. Can anybody please help me out with this? Thanks ------------- Test to Break |
