ZAP Scan Baseline Report

- Site: [http://testphp.vulnweb.com](http://testphp.vulnweb.com) 
 	 **New Alerts** 
	- **Absence of Anti-CSRF Tokens** [10202] total: 11:  
		- [http://testphp.vulnweb.com/](http://testphp.vulnweb.com/) 
		- [http://testphp.vulnweb.com/artists.php](http://testphp.vulnweb.com/artists.php) 
		- [http://testphp.vulnweb.com/cart.php](http://testphp.vulnweb.com/cart.php) 
		- [http://testphp.vulnweb.com/categories.php](http://testphp.vulnweb.com/categories.php) 
		- [http://testphp.vulnweb.com/disclaimer.php](http://testphp.vulnweb.com/disclaimer.php) 
		- .. 
	- **Content Security Policy (CSP) Header Not Set** [10038] total: 11:  
		- [http://testphp.vulnweb.com/](http://testphp.vulnweb.com/) 
		- [http://testphp.vulnweb.com/AJAX/index.php](http://testphp.vulnweb.com/AJAX/index.php) 
		- [http://testphp.vulnweb.com/artists.php](http://testphp.vulnweb.com/artists.php) 
		- [http://testphp.vulnweb.com/cart.php](http://testphp.vulnweb.com/cart.php) 
		- [http://testphp.vulnweb.com/categories.php](http://testphp.vulnweb.com/categories.php) 
		- .. 
	- **Missing Anti-clickjacking Header** [10020] total: 11:  
		- [http://testphp.vulnweb.com/](http://testphp.vulnweb.com/) 
		- [http://testphp.vulnweb.com/AJAX/index.php](http://testphp.vulnweb.com/AJAX/index.php) 
		- [http://testphp.vulnweb.com/artists.php](http://testphp.vulnweb.com/artists.php) 
		- [http://testphp.vulnweb.com/cart.php](http://testphp.vulnweb.com/cart.php) 
		- [http://testphp.vulnweb.com/categories.php](http://testphp.vulnweb.com/categories.php) 
		- .. 
	- **In Page Banner Information Leak** [10009] total: 3:  
		- [http://testphp.vulnweb.com/high](http://testphp.vulnweb.com/high) 
		- [http://testphp.vulnweb.com/robots.txt](http://testphp.vulnweb.com/robots.txt) 
		- [http://testphp.vulnweb.com/sitemap.xml](http://testphp.vulnweb.com/sitemap.xml) 
	- **Permissions Policy Header Not Set** [10063] total: 11:  
		- [http://testphp.vulnweb.com/](http://testphp.vulnweb.com/) 
		- [http://testphp.vulnweb.com/AJAX/index.php](http://testphp.vulnweb.com/AJAX/index.php) 
		- [http://testphp.vulnweb.com/artists.php](http://testphp.vulnweb.com/artists.php) 
		- [http://testphp.vulnweb.com/cart.php](http://testphp.vulnweb.com/cart.php) 
		- [http://testphp.vulnweb.com/categories.php](http://testphp.vulnweb.com/categories.php) 
		- .. 
	- **Server Leaks Information via "X-Powered-By" HTTP Response Header Field(s)** [10037] total: 11:  
		- [http://testphp.vulnweb.com/](http://testphp.vulnweb.com/) 
		- [http://testphp.vulnweb.com/AJAX/index.php](http://testphp.vulnweb.com/AJAX/index.php) 
		- [http://testphp.vulnweb.com/artists.php](http://testphp.vulnweb.com/artists.php) 
		- [http://testphp.vulnweb.com/cart.php](http://testphp.vulnweb.com/cart.php) 
		- [http://testphp.vulnweb.com/categories.php](http://testphp.vulnweb.com/categories.php) 
		- .. 
	- **Server Leaks Version Information via "Server" HTTP Response Header Field** [10036] total: 11:  
		- [http://testphp.vulnweb.com/](http://testphp.vulnweb.com/) 
		- [http://testphp.vulnweb.com/AJAX/index.php](http://testphp.vulnweb.com/AJAX/index.php) 
		- [http://testphp.vulnweb.com/artists.php](http://testphp.vulnweb.com/artists.php) 
		- [http://testphp.vulnweb.com/cart.php](http://testphp.vulnweb.com/cart.php) 
		- [http://testphp.vulnweb.com/categories.php](http://testphp.vulnweb.com/categories.php) 
		- .. 
	- **X-Content-Type-Options Header Missing** [10021] total: 11:  
		- [http://testphp.vulnweb.com/](http://testphp.vulnweb.com/) 
		- [http://testphp.vulnweb.com/AJAX/index.php](http://testphp.vulnweb.com/AJAX/index.php) 
		- [http://testphp.vulnweb.com/artists.php](http://testphp.vulnweb.com/artists.php) 
		- [http://testphp.vulnweb.com/cart.php](http://testphp.vulnweb.com/cart.php) 
		- [http://testphp.vulnweb.com/categories.php](http://testphp.vulnweb.com/categories.php) 
		- .. 
	- **Authentication Request Identified** [10111] total: 1:  
		- [http://testphp.vulnweb.com/secured/newuser.php](http://testphp.vulnweb.com/secured/newuser.php) 
	- **Base64 Disclosure** [10094] total: 11:  
		- [http://testphp.vulnweb.com/](http://testphp.vulnweb.com/) 
		- [http://testphp.vulnweb.com/artists.php](http://testphp.vulnweb.com/artists.php) 
		- [http://testphp.vulnweb.com/cart.php](http://testphp.vulnweb.com/cart.php) 
		- [http://testphp.vulnweb.com/categories.php](http://testphp.vulnweb.com/categories.php) 
		- [http://testphp.vulnweb.com/disclaimer.php](http://testphp.vulnweb.com/disclaimer.php) 
		- .. 
	- **Charset Mismatch (Header Versus Meta Content-Type Charset)** [90011] total: 11:  
		- [http://testphp.vulnweb.com/](http://testphp.vulnweb.com/) 
		- [http://testphp.vulnweb.com/AJAX/index.php](http://testphp.vulnweb.com/AJAX/index.php) 
		- [http://testphp.vulnweb.com/artists.php](http://testphp.vulnweb.com/artists.php) 
		- [http://testphp.vulnweb.com/cart.php](http://testphp.vulnweb.com/cart.php) 
		- [http://testphp.vulnweb.com/categories.php](http://testphp.vulnweb.com/categories.php) 
		- .. 
	- **Information Disclosure - Suspicious Comments** [10027] total: 1:  
		- [http://testphp.vulnweb.com/AJAX/index.php](http://testphp.vulnweb.com/AJAX/index.php) 
	- **Modern Web Application** [10109] total: 7:  
		- [http://testphp.vulnweb.com/AJAX/index.php](http://testphp.vulnweb.com/AJAX/index.php) 
		- [http://testphp.vulnweb.com/artists.php](http://testphp.vulnweb.com/artists.php) 
		- [http://testphp.vulnweb.com/artists.php?artist=1](http://testphp.vulnweb.com/artists.php?artist=1) 
		- [http://testphp.vulnweb.com/artists.php?artist=2](http://testphp.vulnweb.com/artists.php?artist=2) 
		- [http://testphp.vulnweb.com/artists.php?artist=3](http://testphp.vulnweb.com/artists.php?artist=3) 
		- .. 
	- **Sec-Fetch-Dest Header is Missing** [90005] total: 2:  
		- [http://testphp.vulnweb.com/](http://testphp.vulnweb.com/) 
		- [http://testphp.vulnweb.com/sitemap.xml](http://testphp.vulnweb.com/sitemap.xml) 
	- **Sec-Fetch-Mode Header is Missing** [90005] total: 2:  
		- [http://testphp.vulnweb.com/](http://testphp.vulnweb.com/) 
		- [http://testphp.vulnweb.com/sitemap.xml](http://testphp.vulnweb.com/sitemap.xml) 
	- **Sec-Fetch-Site Header is Missing** [90005] total: 2:  
		- [http://testphp.vulnweb.com/](http://testphp.vulnweb.com/) 
		- [http://testphp.vulnweb.com/sitemap.xml](http://testphp.vulnweb.com/sitemap.xml) 
	- **Sec-Fetch-User Header is Missing** [90005] total: 2:  
		- [http://testphp.vulnweb.com/](http://testphp.vulnweb.com/) 
		- [http://testphp.vulnweb.com/sitemap.xml](http://testphp.vulnweb.com/sitemap.xml) 
	- **Storable and Cacheable Content** [10049] total: 11:  
		- [http://testphp.vulnweb.com/](http://testphp.vulnweb.com/) 
		- [http://testphp.vulnweb.com/AJAX/index.php](http://testphp.vulnweb.com/AJAX/index.php) 
		- [http://testphp.vulnweb.com/artists.php](http://testphp.vulnweb.com/artists.php) 
		- [http://testphp.vulnweb.com/cart.php](http://testphp.vulnweb.com/cart.php) 
		- [http://testphp.vulnweb.com/categories.php](http://testphp.vulnweb.com/categories.php) 
		- .. 
	- **User Controllable HTML Element Attribute (Potential XSS)** [10031] total: 3:  
		- [http://testphp.vulnweb.com/guestbook.php](http://testphp.vulnweb.com/guestbook.php) 
		- [http://testphp.vulnweb.com/search.php?test=query](http://testphp.vulnweb.com/search.php?test=query) 
		- [http://testphp.vulnweb.com/search.php?test=query](http://testphp.vulnweb.com/search.php?test=query) 



View the [following link](https://github.com/rahuls512/GitHubAction_OWASP-ZAP-SCAN/actions/runs/6295015001) to download the report.
RunnerID:6295015001

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

ZAP Scan Baseline Report #1

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

ZAP Scan Baseline Report #1

Description

Metadata

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Issue actions