Results 1 to 2 of 2

Thread: Vulnerabilities reported by skipfish

Hybrid View

  1. #1
    Just burned their ISO
    Join Date
    Nov 2012
    Posts
    1

    Question Vulnerabilities reported by skipfish

    Hello to everyone,
    during these days I did a scan with skypfish on a web application created for the my company, and some errors have been reported
    Query injection vector - https://xxx.com:4430/docs/0.vb/9-8
    Shell injection vector - https://xxx.xxx.com:4430/docs/51.vb/`true`
    I have reported the errors to the company that created the site, but them say that the application is secure, can you give me some advice?
    It is possible that it is a fake of skipfish?


    Thanks

  2. #2
    My life is this forum thorin's Avatar
    Join Date
    Jan 2010
    Posts
    2,629

    Default Re: Vulnerabilities reported by skipfish

    It could be a false positive.

    Try hiring someone who actually does web application vulnerability assessment for a living instead of futzing with a tool and technologies you don't really understand.
    I'm a compulsive post editor, you might wanna wait until my post has been online for 5-10 mins before quoting it as it will likely change.

    I know I seem harsh in some of my replies. SORRY! But if you're doing something illegal or posting something that seems to be obvious BS I'm going to call you on it.

Similar Threads

  1. SkipFish 185b to 1.88b !
    By ZEROF in forum BackTrack 5 Tool Requests (NOW CLOSED) Please see sticky
    Replies: 1
    Last Post: 05-17-2011, 02:08 AM
  2. Update SkipFish
    By ZEROF in forum Tool Requests
    Replies: 2
    Last Post: 09-10-2010, 03:03 PM
  3. SkipFish 1.33b installation - BT4
    By bostonlink in forum BackTrack Howtos
    Replies: 3
    Last Post: 05-01-2010, 02:07 AM
  4. skipfish -> problem on a backtracku 4 :/
    By wasad in forum Beginners Forum
    Replies: 6
    Last Post: 04-08-2010, 07:42 PM
  5. Skipfish - Web App Security Scanner
    By skidmarq in forum Tool Requests
    Replies: 5
    Last Post: 03-23-2010, 02:54 AM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •