Hello, I have run a basic scan to "">http://testphp.vulnweb.com" with OWASP Top 10 - 2023 Policy.
The problem here is that Webinspect doesn't scan parameters inside listproducts as shown here.
Cybersecurity
DevOps Cloud (ADM)
IT Operations Cloud
Hello, I have run a basic scan to "">http://testphp.vulnweb.com" with OWASP Top 10 - 2023 Policy.
The problem here is that Webinspect doesn't scan parameters inside listproducts as shown here.
Double-check the policy chosen as the OWASP Top 10 for 2023 is focused on API.
Running the OWASP Top 10 2021 shows WebInspect testing and reporting on these parameters:
My recommendation would be to run a Basic Scan with the Standard policy then generate a Compliance Report based on OWASP TOP 10 - 2021: