Comments (5)
in the past, when I test the tiredful API, it can show broken authentication error, and I guess it is because, that endpoint doesn't need to be authenticated, but Astra test this vulnerability by removing the authentication header and send the request again.
is this feature is closed now?
from astra.
and another problem is that it seems the log file is not right because compare to the log file of the API application, the request seems got a status code 404
from astra.
and when i test using an invalid URL i still can got the report like this:
but in the past, it will always show in progress but not completed
from astra.
and is I choose method post, every time when I refresh the page it will change to DEL
from astra.
and this kind of SQL injection vulnerability can't be test out
and rate limit
from astra.
Related Issues (20)
- Report Generation
- Reregister https://www.astra-security.info/ ? HOT 1
- ImportError: cannot import name main HOT 2
- kindly Fix Some Errors
- Failed to connect to MongoDB. HOT 1
- issue mistake
- Updation Request: Port to python 3
- ImportError: No Module named Flask HOT 1
- Does not run
- ERROR Distribution sqlmapamqp HOT 3
- requierement HOT 3
- Docker Image Issues
- https://www.astra-security.info/ no longer registered HOT 1
- web页面响应特别慢
- Unable to run against Postman collection HOT 2
- Api
- unable to start container process
- Issue when upload postman Collection
- Double requirment of requests
- Is the project dead ? HOT 3
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from astra.