Issue | A05 Security Misconfiguration - Swagger API Structure Exposed |
Priority | LOW |
EP Number | |
Resolution | Only exposed on the DEV test environment. |
Issue | A04:2021 – Insecure Design Delete EPA/EPA Manager Request Susceptible to CSRF |
Priority | LOW |
EP Number | |
Resolution |
Issue | A07:2021 – Identification and Authentication Failures Account Enumeration Possible Via Login Page |
Priority | LOW |
EP Number | |
Resolution: | Amend the warning text when entering an incorrect username/password from bold to normal |
Issue | Security Misconfiguration - Missing Sub resource Integrity For External Scripts |
Priority | RAISE FOR REFERENCE |
EP Number | |
Resolution: |
Issue | A06:2021 – Vulnerable and Outdated Components -Vulnerable and Outdated Components (possibly dev only) |
Priority | LOW |
EP Number | |
Resolution: |
Issue | A05 Security Misconfiguration – Stack Trace Observed (dev site only) |
Priority | LOW |
EP Number | |
Resolution: | This only relates to the dev site |
Issue | A05 Security Misconfiguration - Laravel Debugging Enabled (dev site only) |
Priority | LOW |
EP Number | |
Resolution: | This only relates to the dev site |
Issue | A05 - Security Misconfiguration - Stack Trace Available to Anonymous Users (dev site only) |
Priority | LOW |
EP Number | |
Resolution: | This only relates to the dev site |
Issue | A02 - Cryptographic Failures – Weak Ciphers Within TLSv1.2 Supported |
Priority | LOW |
EP Number | |
Resolution: |
Add Comment