Interesting response error Under High Risk
Getting Interesting response error saying as "The server
responded with a non 200 (OK) nor 404 (Not Found) status code.
This is a non-issue, however exotic HTTP response status codes can
provide useful
insights into the behavior of the web application and assist with
the penetration test."
Is this is an error or its just for the information
Comments are currently closed for this discussion. You can start a new one.
Keyboard shortcuts
Generic
? | Show this help |
---|---|
ESC | Blurs the current field |
Comment Form
r | Focus the comment reply box |
---|---|
^ + ↩ | Submit the comment |
You can use Command ⌘
instead of Control ^
on Mac
Support Staff 1 Posted by Tasos Laskos on 23 Nov, 2015 01:36 PM
These types of issues have a severity of "Informational" and that is reflected in all areas where they might be presented (UIs, reports, etc.), was it misclassified as "High" somewhere?
2 Posted by waseem.shspl on 23 Nov, 2015 01:58 PM
Yes in a report its showing that its under High risk, Please find attached screenshot
Support Staff 3 Posted by Tasos Laskos on 23 Nov, 2015 02:18 PM
Thanks for the screenshot, what application or service generated that report?
4 Posted by waseem.shspl on 23 Nov, 2015 02:25 PM
Its a Dot net application developed in Asp.net and C# with 2.0 framework.
Support Staff 5 Posted by Tasos Laskos on 23 Nov, 2015 02:31 PM
As you can see, the issue clearly has a severity of "Informational", other than that I can't help you; the person writing that application must sort and categorise the issues accordingly.
Is that application something you're working on?
6 Posted by waseem.shspl on 23 Nov, 2015 05:36 PM
Yes I am working on this application , can you please advice me on how to sort and categorise issue
Support Staff 7 Posted by Tasos Laskos on 23 Nov, 2015 05:47 PM
In order of severity, it goes: high, medium, low, informational
By the way, please make sure that you're not in violation of the license: http://www.arachni-scanner.com/license/
Tasos Laskos closed this discussion on 24 Nov, 2015 01:39 PM.