WAVSEP is a vulnerable web application designed to help assessing the features, quality and accuracy of web application vulnerability scanners.
It is the most comprehensive OSS DAST specific test suite that we know of.
This version of WAVSEP is now maintained by the ZAP Team: https://github.com/zaproxy/wavsep
Click on the Sections to see the full set of results, which also give the local URL and the scan rule which should find the vulnerability.
⚠️ Warning
We are still in the process of configuring and checking this scan, so you should not rely on the results just yet.
We are also aware that some tests are broken - they are shown as “⚠️ Broken” and do not count as failures.
| Section | Score | ||
|---|---|---|---|
Total |
96% |
||
DOM XSS GET Experimental |
100% |
||
| Individual Tests | Rule | Pass | Fail |
| Top Level: /DXSS-Detection-Evaluation-GET-Experimental/ | 4 | 0 | |
| http://127.0.0.1:8080/wavsep/active/DOM-XSS/DXSS-Detection-Evaluation-GET-Experimental/Case01-InjectionDirectlyInToDomXssSinkEval.jsp | 40026 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/DOM-XSS/DXSS-Detection-Evaluation-GET-Experimental/Case02-InjectionDirectlyInToDomXssSinkLocation.jsp | 40026 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/DOM-XSS/DXSS-Detection-Evaluation-GET-Experimental/Case03-InjectionInToVariableBeingAssignedToDomXssSinkEval.jsp | 40026 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/DOM-XSS/DXSS-Detection-Evaluation-GET-Experimental/Case04-InjectionInToVariableBeingAssignedToDomXssSinkLocation.jsp | 40026 | ✓ Pass |
|
Local File Include GET 200 Error |
100% |
||
| Individual Tests | Rule | Pass | Fail |
| Top Level: /LFI-Detection-Evaluation-GET-200Error/ | 52 | 0 | |
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Error/Case01-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Error/Case02-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Error/Case03-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultRelativeInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Error/Case04-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultRelativeInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Error/Case05-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Error/Case06-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultInvalidInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Error/Case07-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Error/Case08-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultEmptyInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Error/Case09-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Error/Case10-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultFullInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Error/Case11-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Error/Case12-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultInvalidInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Error/Case13-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Error/Case14-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultEmptyInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Error/Case15-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Error/Case16-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Error/Case17-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Error/Case18-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultInvalidInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Error/Case19-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Error/Case20-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultEmptyInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Error/Case21-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Error/Case22-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Error/Case23-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Error/Case24-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Error/Case25-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Error/Case26-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Error/Case27-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Error/Case28-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Error/Case29-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Error/Case30-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Error/Case31-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Error/Case32-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Error/Case33-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Error/Case34-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Error/Case35-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Error/Case36-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Error/Case37-LFI-FileClass-FilenameContext-SlashTraversalValidation-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Error/Case38-LFI-FileClass-FilenameContext-BackslashTraversalValidation-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Error/Case39-LFI-FileClass-FilenameContext-UnixTraversalValidation-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Error/Case40-LFI-FileClass-FilenameContext-WindowsTraversalValidation-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Error/Case41-LFI-FileClass-FilenameContext-UnixTraversalValidation-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Error/Case42-LFI-FileClass-FilenameContext-WindowsTraversalValidation-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Error/Case43-LFI-FileClass-FilenameContext-UnixTraversalValidation-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Error/Case44-LFI-FileClass-FilenameContext-WindowsTraversalValidation-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Error/Case45-LFI-ContextStream-FilenameContext-SlashTraversalValidation-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Error/Case46-LFI-ContextStream-FilenameContext-BackslashTraversalValidation-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Error/Case47-LFI-ContextStream-FilenameContext-UnixTraversalValidation-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Error/Case48-LFI-ContextStream-FilenameContext-WindowsTraversalValidation-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Error/Case49-LFI-ContextStream-FilenameContext-UnixTraversalValidation-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Error/Case50-LFI-ContextStream-FilenameContext-WindowsTraversalValidation-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Error/Case51-LFI-ContextStream-FilenameContext-UnixTraversalValidation-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Error/Case52-LFI-ContextStream-FilenameContext-WindowsTraversalValidation-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Error/Case53-LFI-FileClass-FilenameContext-SlashTraversalRemoval-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Error/Case54-LFI-FileClass-FilenameContext-BackslashTraversalRemoval-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Error/Case55-LFI-FileClass-FilenameContext-UnixTraversalRemoval-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Error/Case56-LFI-FileClass-FilenameContext-WindowsTraversalRemoval-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Error/Case57-LFI-FileClass-FilenameContext-UnixTraversalRemoval-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Error/Case58-LFI-FileClass-FilenameContext-WindowsTraversalRemoval-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Error/Case59-LFI-FileClass-FilenameContext-UnixTraversalRemoval-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Error/Case60-LFI-FileClass-FilenameContext-WindowsTraversalRemoval-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Error/Case61-LFI-ContextStream-FilenameContext-SlashTraversalRemoval-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Error/Case62-LFI-ContextStream-FilenameContext-BackslashTraversalRemoval-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Error/Case63-LFI-ContextStream-FilenameContext-UnixTraversalRemoval-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Error/Case64-LFI-ContextStream-FilenameContext-WindowsTraversalRemoval-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Error/Case65-LFI-ContextStream-FilenameContext-UnixTraversalRemoval-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Error/Case66-LFI-ContextStream-FilenameContext-WindowsTraversalRemoval-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Error/Case67-LFI-ContextStream-FilenameContext-UnixTraversalRemoval-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Error/Case68-LFI-ContextStream-FilenameContext-WindowsTraversalRemoval-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
Local File Include GET 200 Identical |
100% |
||
| Individual Tests | Rule | Pass | Fail |
| Top Level: /LFI-Detection-Evaluation-GET-200Identical/ | 52 | 0 | |
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Identical/Case01-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Identical/Case02-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Identical/Case03-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultRelativeInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Identical/Case04-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultRelativeInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Identical/Case05-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Identical/Case06-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultInvalidInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Identical/Case07-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Identical/Case08-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultEmptyInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Identical/Case09-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Identical/Case10-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultFullInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Identical/Case11-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Identical/Case12-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultInvalidInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Identical/Case13-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Identical/Case14-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultEmptyInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Identical/Case15-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Identical/Case16-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Identical/Case17-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Identical/Case18-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultInvalidInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Identical/Case19-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Identical/Case20-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultEmptyInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Identical/Case21-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Identical/Case22-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Identical/Case23-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Identical/Case24-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Identical/Case25-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Identical/Case26-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Identical/Case27-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Identical/Case28-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Identical/Case29-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Identical/Case30-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Identical/Case31-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Identical/Case32-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Identical/Case33-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Identical/Case34-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Identical/Case35-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Identical/Case36-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Identical/Case37-LFI-FileClass-FilenameContext-SlashTraversalValidation-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Identical/Case38-LFI-FileClass-FilenameContext-BackslashTraversalValidation-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Identical/Case39-LFI-FileClass-FilenameContext-UnixTraversalValidation-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Identical/Case40-LFI-FileClass-FilenameContext-WindowsTraversalValidation-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Identical/Case41-LFI-FileClass-FilenameContext-UnixTraversalValidation-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Identical/Case42-LFI-FileClass-FilenameContext-WindowsTraversalValidation-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Identical/Case43-LFI-FileClass-FilenameContext-UnixTraversalValidation-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Identical/Case44-LFI-FileClass-FilenameContext-WindowsTraversalValidation-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Identical/Case45-LFI-ContextStream-FilenameContext-SlashTraversalValidation-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Identical/Case46-LFI-ContextStream-FilenameContext-BackslashTraversalValidation-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Identical/Case47-LFI-ContextStream-FilenameContext-UnixTraversalValidation-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Identical/Case48-LFI-ContextStream-FilenameContext-WindowsTraversalValidation-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Identical/Case49-LFI-ContextStream-FilenameContext-UnixTraversalValidation-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Identical/Case50-LFI-ContextStream-FilenameContext-WindowsTraversalValidation-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Identical/Case51-LFI-ContextStream-FilenameContext-UnixTraversalValidation-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Identical/Case52-LFI-ContextStream-FilenameContext-WindowsTraversalValidation-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Identical/Case53-LFI-FileClass-FilenameContext-SlashTraversalRemoval-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Identical/Case54-LFI-FileClass-FilenameContext-BackslashTraversalRemoval-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Identical/Case55-LFI-FileClass-FilenameContext-UnixTraversalRemoval-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Identical/Case56-LFI-FileClass-FilenameContext-WindowsTraversalRemoval-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Identical/Case57-LFI-FileClass-FilenameContext-UnixTraversalRemoval-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Identical/Case58-LFI-FileClass-FilenameContext-WindowsTraversalRemoval-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Identical/Case59-LFI-FileClass-FilenameContext-UnixTraversalRemoval-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Identical/Case60-LFI-FileClass-FilenameContext-WindowsTraversalRemoval-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Identical/Case61-LFI-ContextStream-FilenameContext-SlashTraversalRemoval-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Identical/Case62-LFI-ContextStream-FilenameContext-BackslashTraversalRemoval-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Identical/Case63-LFI-ContextStream-FilenameContext-UnixTraversalRemoval-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Identical/Case64-LFI-ContextStream-FilenameContext-WindowsTraversalRemoval-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Identical/Case65-LFI-ContextStream-FilenameContext-UnixTraversalRemoval-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Identical/Case66-LFI-ContextStream-FilenameContext-WindowsTraversalRemoval-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Identical/Case67-LFI-ContextStream-FilenameContext-UnixTraversalRemoval-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Identical/Case68-LFI-ContextStream-FilenameContext-WindowsTraversalRemoval-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
Local File Include GET 200 Valid |
100% |
||
| Individual Tests | Rule | Pass | Fail |
| Top Level: /LFI-Detection-Evaluation-GET-200Valid/ | 52 | 0 | |
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Valid/Case01-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Valid/Case02-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Valid/Case03-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultRelativeInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Valid/Case04-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultRelativeInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Valid/Case05-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Valid/Case06-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultInvalidInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Valid/Case07-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Valid/Case08-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultEmptyInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Valid/Case09-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Valid/Case10-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultFullInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Valid/Case11-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Valid/Case12-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultInvalidInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Valid/Case13-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Valid/Case14-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultEmptyInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Valid/Case15-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Valid/Case16-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Valid/Case17-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Valid/Case18-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultInvalidInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Valid/Case19-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Valid/Case20-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultEmptyInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Valid/Case21-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Valid/Case22-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Valid/Case23-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Valid/Case24-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Valid/Case25-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Valid/Case26-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Valid/Case27-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Valid/Case28-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Valid/Case29-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Valid/Case30-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Valid/Case31-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Valid/Case32-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Valid/Case33-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Valid/Case34-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Valid/Case35-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Valid/Case36-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Valid/Case37-LFI-FileClass-FilenameContext-SlashTraversalValidation-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Valid/Case38-LFI-FileClass-FilenameContext-BackslashTraversalValidation-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Valid/Case39-LFI-FileClass-FilenameContext-UnixTraversalValidation-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Valid/Case40-LFI-FileClass-FilenameContext-WindowsTraversalValidation-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Valid/Case41-LFI-FileClass-FilenameContext-UnixTraversalValidation-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Valid/Case42-LFI-FileClass-FilenameContext-WindowsTraversalValidation-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Valid/Case43-LFI-FileClass-FilenameContext-UnixTraversalValidation-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Valid/Case44-LFI-FileClass-FilenameContext-WindowsTraversalValidation-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Valid/Case45-LFI-ContextStream-FilenameContext-SlashTraversalValidation-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Valid/Case46-LFI-ContextStream-FilenameContext-BackslashTraversalValidation-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Valid/Case47-LFI-ContextStream-FilenameContext-UnixTraversalValidation-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Valid/Case48-LFI-ContextStream-FilenameContext-WindowsTraversalValidation-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Valid/Case49-LFI-ContextStream-FilenameContext-UnixTraversalValidation-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Valid/Case50-LFI-ContextStream-FilenameContext-WindowsTraversalValidation-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Valid/Case51-LFI-ContextStream-FilenameContext-UnixTraversalValidation-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Valid/Case52-LFI-ContextStream-FilenameContext-WindowsTraversalValidation-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Valid/Case53-LFI-FileClass-FilenameContext-SlashTraversalRemoval-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Valid/Case54-LFI-FileClass-FilenameContext-BackslashTraversalRemoval-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Valid/Case55-LFI-FileClass-FilenameContext-UnixTraversalRemoval-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Valid/Case56-LFI-FileClass-FilenameContext-WindowsTraversalRemoval-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Valid/Case57-LFI-FileClass-FilenameContext-UnixTraversalRemoval-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Valid/Case58-LFI-FileClass-FilenameContext-WindowsTraversalRemoval-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Valid/Case59-LFI-FileClass-FilenameContext-UnixTraversalRemoval-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Valid/Case60-LFI-FileClass-FilenameContext-WindowsTraversalRemoval-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Valid/Case61-LFI-ContextStream-FilenameContext-SlashTraversalRemoval-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Valid/Case62-LFI-ContextStream-FilenameContext-BackslashTraversalRemoval-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Valid/Case63-LFI-ContextStream-FilenameContext-UnixTraversalRemoval-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Valid/Case64-LFI-ContextStream-FilenameContext-WindowsTraversalRemoval-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Valid/Case65-LFI-ContextStream-FilenameContext-UnixTraversalRemoval-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Valid/Case66-LFI-ContextStream-FilenameContext-WindowsTraversalRemoval-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Valid/Case67-LFI-ContextStream-FilenameContext-UnixTraversalRemoval-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-200Valid/Case68-LFI-ContextStream-FilenameContext-WindowsTraversalRemoval-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
Local File Include GET 302 Redirect |
100% |
||
| Individual Tests | Rule | Pass | Fail |
| Top Level: /LFI-Detection-Evaluation-GET-302Redirect/ | 52 | 0 | |
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-302Redirect/Case01-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-302Redirect/Case02-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-302Redirect/Case03-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultRelativeInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-302Redirect/Case04-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultRelativeInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-302Redirect/Case05-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-302Redirect/Case06-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultInvalidInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-302Redirect/Case07-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-302Redirect/Case08-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultEmptyInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-302Redirect/Case09-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-302Redirect/Case10-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultFullInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-302Redirect/Case11-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-302Redirect/Case12-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultInvalidInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-302Redirect/Case13-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-302Redirect/Case14-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultEmptyInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-302Redirect/Case15-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-302Redirect/Case16-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-302Redirect/Case17-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-302Redirect/Case18-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultInvalidInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-302Redirect/Case19-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-302Redirect/Case20-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultEmptyInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-302Redirect/Case21-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-302Redirect/Case22-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-302Redirect/Case23-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-302Redirect/Case24-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-302Redirect/Case25-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-302Redirect/Case26-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-302Redirect/Case27-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-302Redirect/Case28-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-302Redirect/Case29-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-302Redirect/Case30-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-302Redirect/Case31-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-302Redirect/Case32-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-302Redirect/Case33-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-302Redirect/Case34-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-302Redirect/Case35-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-302Redirect/Case36-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-302Redirect/Case37-LFI-FileClass-FilenameContext-SlashTraversalValidation-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-302Redirect/Case38-LFI-FileClass-FilenameContext-BackslashTraversalValidation-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-302Redirect/Case39-LFI-FileClass-FilenameContext-UnixTraversalValidation-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-302Redirect/Case40-LFI-FileClass-FilenameContext-WindowsTraversalValidation-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-302Redirect/Case41-LFI-FileClass-FilenameContext-UnixTraversalValidation-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-302Redirect/Case42-LFI-FileClass-FilenameContext-WindowsTraversalValidation-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-302Redirect/Case43-LFI-FileClass-FilenameContext-UnixTraversalValidation-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-302Redirect/Case44-LFI-FileClass-FilenameContext-WindowsTraversalValidation-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-302Redirect/Case45-LFI-ContextStream-FilenameContext-SlashTraversalValidation-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-302Redirect/Case46-LFI-ContextStream-FilenameContext-BackslashTraversalValidation-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-302Redirect/Case47-LFI-ContextStream-FilenameContext-UnixTraversalValidation-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-302Redirect/Case48-LFI-ContextStream-FilenameContext-WindowsTraversalValidation-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-302Redirect/Case49-LFI-ContextStream-FilenameContext-UnixTraversalValidation-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-302Redirect/Case50-LFI-ContextStream-FilenameContext-WindowsTraversalValidation-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-302Redirect/Case51-LFI-ContextStream-FilenameContext-UnixTraversalValidation-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-302Redirect/Case52-LFI-ContextStream-FilenameContext-WindowsTraversalValidation-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-302Redirect/Case53-LFI-FileClass-FilenameContext-SlashTraversalRemoval-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-302Redirect/Case54-LFI-FileClass-FilenameContext-BackslashTraversalRemoval-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-302Redirect/Case55-LFI-FileClass-FilenameContext-UnixTraversalRemoval-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-302Redirect/Case56-LFI-FileClass-FilenameContext-WindowsTraversalRemoval-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-302Redirect/Case57-LFI-FileClass-FilenameContext-UnixTraversalRemoval-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-302Redirect/Case58-LFI-FileClass-FilenameContext-WindowsTraversalRemoval-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-302Redirect/Case59-LFI-FileClass-FilenameContext-UnixTraversalRemoval-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-302Redirect/Case60-LFI-FileClass-FilenameContext-WindowsTraversalRemoval-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-302Redirect/Case61-LFI-ContextStream-FilenameContext-SlashTraversalRemoval-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-302Redirect/Case62-LFI-ContextStream-FilenameContext-BackslashTraversalRemoval-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-302Redirect/Case63-LFI-ContextStream-FilenameContext-UnixTraversalRemoval-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-302Redirect/Case64-LFI-ContextStream-FilenameContext-WindowsTraversalRemoval-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-302Redirect/Case65-LFI-ContextStream-FilenameContext-UnixTraversalRemoval-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-302Redirect/Case66-LFI-ContextStream-FilenameContext-WindowsTraversalRemoval-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-302Redirect/Case67-LFI-ContextStream-FilenameContext-UnixTraversalRemoval-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-302Redirect/Case68-LFI-ContextStream-FilenameContext-WindowsTraversalRemoval-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
Local File Include GET 404 Error |
100% |
||
| Individual Tests | Rule | Pass | Fail |
| Top Level: /LFI-Detection-Evaluation-GET-404Error/ | 52 | 0 | |
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-404Error/Case01-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-404Error/Case02-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-404Error/Case03-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultRelativeInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-404Error/Case04-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultRelativeInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-404Error/Case05-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-404Error/Case06-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultInvalidInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-404Error/Case07-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-404Error/Case08-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultEmptyInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-404Error/Case09-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-404Error/Case10-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultFullInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-404Error/Case11-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-404Error/Case12-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultInvalidInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-404Error/Case13-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-404Error/Case14-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultEmptyInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-404Error/Case15-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-404Error/Case16-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-404Error/Case17-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-404Error/Case18-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultInvalidInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-404Error/Case19-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-404Error/Case20-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultEmptyInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-404Error/Case21-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-404Error/Case22-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-404Error/Case23-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-404Error/Case24-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-404Error/Case25-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-404Error/Case26-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-404Error/Case27-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-404Error/Case28-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-404Error/Case29-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-404Error/Case30-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-404Error/Case31-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-404Error/Case32-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-404Error/Case33-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-404Error/Case34-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-404Error/Case35-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-404Error/Case36-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-404Error/Case37-LFI-FileClass-FilenameContext-SlashTraversalValidation-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-404Error/Case38-LFI-FileClass-FilenameContext-BackslashTraversalValidation-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-404Error/Case39-LFI-FileClass-FilenameContext-UnixTraversalValidation-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-404Error/Case40-LFI-FileClass-FilenameContext-WindowsTraversalValidation-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-404Error/Case41-LFI-FileClass-FilenameContext-UnixTraversalValidation-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-404Error/Case42-LFI-FileClass-FilenameContext-WindowsTraversalValidation-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-404Error/Case43-LFI-FileClass-FilenameContext-UnixTraversalValidation-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-404Error/Case44-LFI-FileClass-FilenameContext-WindowsTraversalValidation-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-404Error/Case45-LFI-ContextStream-FilenameContext-SlashTraversalValidation-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-404Error/Case46-LFI-ContextStream-FilenameContext-BackslashTraversalValidation-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-404Error/Case47-LFI-ContextStream-FilenameContext-UnixTraversalValidation-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-404Error/Case48-LFI-ContextStream-FilenameContext-WindowsTraversalValidation-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-404Error/Case49-LFI-ContextStream-FilenameContext-UnixTraversalValidation-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-404Error/Case50-LFI-ContextStream-FilenameContext-WindowsTraversalValidation-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-404Error/Case51-LFI-ContextStream-FilenameContext-UnixTraversalValidation-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-404Error/Case52-LFI-ContextStream-FilenameContext-WindowsTraversalValidation-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-404Error/Case53-LFI-FileClass-FilenameContext-SlashTraversalRemoval-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-404Error/Case54-LFI-FileClass-FilenameContext-BackslashTraversalRemoval-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-404Error/Case55-LFI-FileClass-FilenameContext-UnixTraversalRemoval-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-404Error/Case56-LFI-FileClass-FilenameContext-WindowsTraversalRemoval-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-404Error/Case57-LFI-FileClass-FilenameContext-UnixTraversalRemoval-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-404Error/Case58-LFI-FileClass-FilenameContext-WindowsTraversalRemoval-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-404Error/Case59-LFI-FileClass-FilenameContext-UnixTraversalRemoval-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-404Error/Case60-LFI-FileClass-FilenameContext-WindowsTraversalRemoval-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-404Error/Case61-LFI-ContextStream-FilenameContext-SlashTraversalRemoval-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-404Error/Case62-LFI-ContextStream-FilenameContext-BackslashTraversalRemoval-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-404Error/Case63-LFI-ContextStream-FilenameContext-UnixTraversalRemoval-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-404Error/Case64-LFI-ContextStream-FilenameContext-WindowsTraversalRemoval-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-404Error/Case65-LFI-ContextStream-FilenameContext-UnixTraversalRemoval-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-404Error/Case66-LFI-ContextStream-FilenameContext-WindowsTraversalRemoval-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-404Error/Case67-LFI-ContextStream-FilenameContext-UnixTraversalRemoval-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-404Error/Case68-LFI-ContextStream-FilenameContext-WindowsTraversalRemoval-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
Local File Include GET 500 Error |
100% |
||
| Individual Tests | Rule | Pass | Fail |
| Top Level: /LFI-Detection-Evaluation-GET-500Error/ | 52 | 0 | |
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-500Error/Case01-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-500Error/Case02-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-500Error/Case03-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultRelativeInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-500Error/Case04-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultRelativeInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-500Error/Case05-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-500Error/Case06-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultInvalidInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-500Error/Case07-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-500Error/Case08-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultEmptyInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-500Error/Case09-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-500Error/Case10-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultFullInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-500Error/Case11-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-500Error/Case12-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultInvalidInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-500Error/Case13-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-500Error/Case14-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultEmptyInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-500Error/Case15-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-500Error/Case16-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-500Error/Case17-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-500Error/Case18-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultInvalidInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-500Error/Case19-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-500Error/Case20-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultEmptyInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-500Error/Case21-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-500Error/Case22-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-500Error/Case23-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-500Error/Case24-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-500Error/Case25-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-500Error/Case26-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-500Error/Case27-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-500Error/Case28-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-500Error/Case29-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-500Error/Case30-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-500Error/Case31-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-500Error/Case32-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-500Error/Case33-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-500Error/Case34-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-500Error/Case35-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-500Error/Case36-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-500Error/Case37-LFI-FileClass-FilenameContext-SlashTraversalValidation-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-500Error/Case38-LFI-FileClass-FilenameContext-BackslashTraversalValidation-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-500Error/Case39-LFI-FileClass-FilenameContext-UnixTraversalValidation-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-500Error/Case40-LFI-FileClass-FilenameContext-WindowsTraversalValidation-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-500Error/Case41-LFI-FileClass-FilenameContext-UnixTraversalValidation-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-500Error/Case42-LFI-FileClass-FilenameContext-WindowsTraversalValidation-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-500Error/Case43-LFI-FileClass-FilenameContext-UnixTraversalValidation-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-500Error/Case44-LFI-FileClass-FilenameContext-WindowsTraversalValidation-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-500Error/Case45-LFI-ContextStream-FilenameContext-SlashTraversalValidation-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-500Error/Case46-LFI-ContextStream-FilenameContext-BackslashTraversalValidation-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-500Error/Case47-LFI-ContextStream-FilenameContext-UnixTraversalValidation-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-500Error/Case48-LFI-ContextStream-FilenameContext-WindowsTraversalValidation-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-500Error/Case49-LFI-ContextStream-FilenameContext-UnixTraversalValidation-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-500Error/Case50-LFI-ContextStream-FilenameContext-WindowsTraversalValidation-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-500Error/Case51-LFI-ContextStream-FilenameContext-UnixTraversalValidation-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-500Error/Case52-LFI-ContextStream-FilenameContext-WindowsTraversalValidation-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-500Error/Case53-LFI-FileClass-FilenameContext-SlashTraversalRemoval-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-500Error/Case54-LFI-FileClass-FilenameContext-BackslashTraversalRemoval-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-500Error/Case55-LFI-FileClass-FilenameContext-UnixTraversalRemoval-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-500Error/Case56-LFI-FileClass-FilenameContext-WindowsTraversalRemoval-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-500Error/Case57-LFI-FileClass-FilenameContext-UnixTraversalRemoval-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-500Error/Case58-LFI-FileClass-FilenameContext-WindowsTraversalRemoval-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-500Error/Case59-LFI-FileClass-FilenameContext-UnixTraversalRemoval-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-500Error/Case60-LFI-FileClass-FilenameContext-WindowsTraversalRemoval-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-500Error/Case61-LFI-ContextStream-FilenameContext-SlashTraversalRemoval-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-500Error/Case62-LFI-ContextStream-FilenameContext-BackslashTraversalRemoval-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-500Error/Case63-LFI-ContextStream-FilenameContext-UnixTraversalRemoval-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-500Error/Case64-LFI-ContextStream-FilenameContext-WindowsTraversalRemoval-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-500Error/Case65-LFI-ContextStream-FilenameContext-UnixTraversalRemoval-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-500Error/Case66-LFI-ContextStream-FilenameContext-WindowsTraversalRemoval-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-500Error/Case67-LFI-ContextStream-FilenameContext-UnixTraversalRemoval-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-GET-500Error/Case68-LFI-ContextStream-FilenameContext-WindowsTraversalRemoval-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
Local File Include GET False Positives |
75% |
||
| Individual Tests | Rule | Pass | Fail |
| Top Level: /LFI-FalsePositives-GET/ | 6 | 2 | |
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-FalsePositives-GET/Case01-LFI-FalsePositive-Forward-TextHtmlValidResponse-FilenameContext-Unrestricted-OSPath-DefaultRelativeInput-NoPathReq-Read.jsp | 6 | ❌ FAIL |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-FalsePositives-GET/Case02-LFI-FalsePositive-OpenRedirect-TextHtmlValidResponse-FilenameContext-Unrestricted-OSPath-DefaultRelativeInput-NoPathReq-Read.jsp | 6 | ❌ FAIL |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-FalsePositives-GET/Case03-LFI-FalsePositive-FileClass-TextHtmlValidResponse-FilenameContext-WhiteList-OSPath-DefaultRelativeInput-NoPathReq-Read.jsp | ✓ Pass |
||
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-FalsePositives-GET/Case04-LFI-FalsePositive-FileClass-TextHtmlValidResponse-FilenameContext-TraversalRemovalAndWhiteList-OSPath-DefaultRelativeInput-NoPathReq-Read.jsp | ✓ Pass |
||
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-FalsePositives-GET/Case05-LFI-FalsePositive-ContextStream-TextHtmlValidResponse-FilenameContext-WhiteList-OSPath-DefaultRelativeInput-NoPathReq-Read.jsp | ✓ Pass |
||
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-FalsePositives-GET/Case06-LFI-FalsePositive-ContextStream-TextHtmlValidResponse-FilenameContext-TraversalRemovalAndWhiteList-OSPath-DefaultRelativeInput-NoPathReq-Read.jsp | ✓ Pass |
||
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-FalsePositives-GET/Case07-LFI-FalsePositive-FileClass-TextHtmlValidResponse-FilenameContext-EnumerationResponseOnly-OSPath-DefaultRelativeInput-NoPathReq-Read.jsp | ✓ Pass |
||
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-FalsePositives-GET/Case08-LFI-FalsePositive-FileClass-TextHtmlValidResponse-FilenameContext-InputNotUsed-OSPath-DefaultRelativeInput-NoPathReq-Read.jsp | ✓ Pass |
||
Local File Include POST 200 Error |
100% |
||
| Individual Tests | Rule | Pass | Fail |
| Top Level: /LFI-Detection-Evaluation-POST-200Error/ | 52 | 0 | |
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Error/Case01-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Error/Case02-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Error/Case03-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultRelativeInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Error/Case04-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultRelativeInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Error/Case05-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Error/Case06-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultInvalidInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Error/Case07-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Error/Case08-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultEmptyInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Error/Case09-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Error/Case10-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultFullInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Error/Case11-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Error/Case12-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultInvalidInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Error/Case13-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Error/Case14-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultEmptyInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Error/Case15-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Error/Case16-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Error/Case17-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Error/Case18-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultInvalidInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Error/Case19-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Error/Case20-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultEmptyInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Error/Case21-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Error/Case22-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Error/Case23-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Error/Case24-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Error/Case25-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Error/Case26-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Error/Case27-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Error/Case28-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Error/Case29-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Error/Case30-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Error/Case31-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Error/Case32-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Error/Case33-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Error/Case34-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Error/Case35-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Error/Case36-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Error/Case37-LFI-FileClass-FilenameContext-SlashTraversalValidation-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Error/Case38-LFI-FileClass-FilenameContext-BackslashTraversalValidation-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Error/Case39-LFI-FileClass-FilenameContext-UnixTraversalValidation-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Error/Case40-LFI-FileClass-FilenameContext-WindowsTraversalValidation-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Error/Case41-LFI-FileClass-FilenameContext-UnixTraversalValidation-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Error/Case42-LFI-FileClass-FilenameContext-WindowsTraversalValidation-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Error/Case43-LFI-FileClass-FilenameContext-UnixTraversalValidation-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Error/Case44-LFI-FileClass-FilenameContext-WindowsTraversalValidation-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Error/Case45-LFI-ContextStream-FilenameContext-SlashTraversalValidation-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Error/Case46-LFI-ContextStream-FilenameContext-BackslashTraversalValidation-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Error/Case47-LFI-ContextStream-FilenameContext-UnixTraversalValidation-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Error/Case48-LFI-ContextStream-FilenameContext-WindowsTraversalValidation-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Error/Case49-LFI-ContextStream-FilenameContext-UnixTraversalValidation-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Error/Case50-LFI-ContextStream-FilenameContext-WindowsTraversalValidation-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Error/Case51-LFI-ContextStream-FilenameContext-UnixTraversalValidation-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Error/Case52-LFI-ContextStream-FilenameContext-WindowsTraversalValidation-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Error/Case53-LFI-FileClass-FilenameContext-SlashTraversalRemoval-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Error/Case54-LFI-FileClass-FilenameContext-BackslashTraversalRemoval-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Error/Case55-LFI-FileClass-FilenameContext-UnixTraversalRemoval-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Error/Case56-LFI-FileClass-FilenameContext-WindowsTraversalRemoval-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Error/Case57-LFI-FileClass-FilenameContext-UnixTraversalRemoval-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Error/Case58-LFI-FileClass-FilenameContext-WindowsTraversalRemoval-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Error/Case59-LFI-FileClass-FilenameContext-UnixTraversalRemoval-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Error/Case60-LFI-FileClass-FilenameContext-WindowsTraversalRemoval-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Error/Case61-LFI-ContextStream-FilenameContext-SlashTraversalRemoval-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Error/Case62-LFI-ContextStream-FilenameContext-BackslashTraversalRemoval-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Error/Case63-LFI-ContextStream-FilenameContext-UnixTraversalRemoval-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Error/Case64-LFI-ContextStream-FilenameContext-WindowsTraversalRemoval-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Error/Case65-LFI-ContextStream-FilenameContext-UnixTraversalRemoval-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Error/Case66-LFI-ContextStream-FilenameContext-WindowsTraversalRemoval-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Error/Case67-LFI-ContextStream-FilenameContext-UnixTraversalRemoval-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Error/Case68-LFI-ContextStream-FilenameContext-WindowsTraversalRemoval-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
Local File Include POST 200 Identical |
100% |
||
| Individual Tests | Rule | Pass | Fail |
| Top Level: /LFI-Detection-Evaluation-POST-200Identical/ | 52 | 0 | |
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Identical/Case01-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Identical/Case02-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Identical/Case03-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultRelativeInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Identical/Case04-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultRelativeInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Identical/Case05-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Identical/Case06-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultInvalidInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Identical/Case07-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Identical/Case08-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultEmptyInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Identical/Case09-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Identical/Case10-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultFullInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Identical/Case11-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Identical/Case12-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultInvalidInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Identical/Case13-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Identical/Case14-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultEmptyInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Identical/Case15-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Identical/Case16-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Identical/Case17-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Identical/Case18-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultInvalidInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Identical/Case19-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Identical/Case20-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultEmptyInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Identical/Case21-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Identical/Case22-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Identical/Case23-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Identical/Case24-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Identical/Case25-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Identical/Case26-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Identical/Case27-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Identical/Case28-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Identical/Case29-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Identical/Case30-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Identical/Case31-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Identical/Case32-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Identical/Case33-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Identical/Case34-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Identical/Case35-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Identical/Case36-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Identical/Case37-LFI-FileClass-FilenameContext-SlashTraversalValidation-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Identical/Case38-LFI-FileClass-FilenameContext-BackslashTraversalValidation-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Identical/Case39-LFI-FileClass-FilenameContext-UnixTraversalValidation-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Identical/Case40-LFI-FileClass-FilenameContext-WindowsTraversalValidation-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Identical/Case41-LFI-FileClass-FilenameContext-UnixTraversalValidation-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Identical/Case42-LFI-FileClass-FilenameContext-WindowsTraversalValidation-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Identical/Case43-LFI-FileClass-FilenameContext-UnixTraversalValidation-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Identical/Case44-LFI-FileClass-FilenameContext-WindowsTraversalValidation-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Identical/Case45-LFI-ContextStream-FilenameContext-SlashTraversalValidation-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Identical/Case46-LFI-ContextStream-FilenameContext-BackslashTraversalValidation-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Identical/Case47-LFI-ContextStream-FilenameContext-UnixTraversalValidation-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Identical/Case48-LFI-ContextStream-FilenameContext-WindowsTraversalValidation-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Identical/Case49-LFI-ContextStream-FilenameContext-UnixTraversalValidation-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Identical/Case50-LFI-ContextStream-FilenameContext-WindowsTraversalValidation-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Identical/Case51-LFI-ContextStream-FilenameContext-UnixTraversalValidation-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Identical/Case52-LFI-ContextStream-FilenameContext-WindowsTraversalValidation-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Identical/Case53-LFI-FileClass-FilenameContext-SlashTraversalRemoval-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Identical/Case54-LFI-FileClass-FilenameContext-BackslashTraversalRemoval-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Identical/Case55-LFI-FileClass-FilenameContext-UnixTraversalRemoval-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Identical/Case56-LFI-FileClass-FilenameContext-WindowsTraversalRemoval-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Identical/Case57-LFI-FileClass-FilenameContext-UnixTraversalRemoval-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Identical/Case58-LFI-FileClass-FilenameContext-WindowsTraversalRemoval-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Identical/Case59-LFI-FileClass-FilenameContext-UnixTraversalRemoval-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Identical/Case60-LFI-FileClass-FilenameContext-WindowsTraversalRemoval-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Identical/Case61-LFI-ContextStream-FilenameContext-SlashTraversalRemoval-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Identical/Case62-LFI-ContextStream-FilenameContext-BackslashTraversalRemoval-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Identical/Case63-LFI-ContextStream-FilenameContext-UnixTraversalRemoval-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Identical/Case64-LFI-ContextStream-FilenameContext-WindowsTraversalRemoval-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Identical/Case65-LFI-ContextStream-FilenameContext-UnixTraversalRemoval-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Identical/Case66-LFI-ContextStream-FilenameContext-WindowsTraversalRemoval-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Identical/Case67-LFI-ContextStream-FilenameContext-UnixTraversalRemoval-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Identical/Case68-LFI-ContextStream-FilenameContext-WindowsTraversalRemoval-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
Local File Include POST 200 Valid |
100% |
||
| Individual Tests | Rule | Pass | Fail |
| Top Level: /LFI-Detection-Evaluation-POST-200Valid/ | 52 | 0 | |
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Valid/Case01-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Valid/Case02-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Valid/Case03-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultRelativeInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Valid/Case04-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultRelativeInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Valid/Case05-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Valid/Case06-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultInvalidInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Valid/Case07-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Valid/Case08-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultEmptyInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Valid/Case09-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Valid/Case10-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultFullInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Valid/Case11-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Valid/Case12-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultInvalidInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Valid/Case13-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Valid/Case14-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultEmptyInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Valid/Case15-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Valid/Case16-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Valid/Case17-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Valid/Case18-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultInvalidInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Valid/Case19-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Valid/Case20-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultEmptyInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Valid/Case21-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Valid/Case22-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Valid/Case23-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Valid/Case24-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Valid/Case25-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Valid/Case26-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Valid/Case27-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Valid/Case28-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Valid/Case29-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Valid/Case30-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Valid/Case31-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Valid/Case32-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Valid/Case33-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Valid/Case34-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Valid/Case35-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Valid/Case36-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Valid/Case37-LFI-FileClass-FilenameContext-SlashTraversalValidation-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Valid/Case38-LFI-FileClass-FilenameContext-BackslashTraversalValidation-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Valid/Case39-LFI-FileClass-FilenameContext-UnixTraversalValidation-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Valid/Case40-LFI-FileClass-FilenameContext-WindowsTraversalValidation-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Valid/Case41-LFI-FileClass-FilenameContext-UnixTraversalValidation-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Valid/Case42-LFI-FileClass-FilenameContext-WindowsTraversalValidation-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Valid/Case43-LFI-FileClass-FilenameContext-UnixTraversalValidation-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Valid/Case44-LFI-FileClass-FilenameContext-WindowsTraversalValidation-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Valid/Case45-LFI-ContextStream-FilenameContext-SlashTraversalValidation-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Valid/Case46-LFI-ContextStream-FilenameContext-BackslashTraversalValidation-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Valid/Case47-LFI-ContextStream-FilenameContext-UnixTraversalValidation-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Valid/Case48-LFI-ContextStream-FilenameContext-WindowsTraversalValidation-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Valid/Case49-LFI-ContextStream-FilenameContext-UnixTraversalValidation-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Valid/Case50-LFI-ContextStream-FilenameContext-WindowsTraversalValidation-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Valid/Case51-LFI-ContextStream-FilenameContext-UnixTraversalValidation-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Valid/Case52-LFI-ContextStream-FilenameContext-WindowsTraversalValidation-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Valid/Case53-LFI-FileClass-FilenameContext-SlashTraversalRemoval-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Valid/Case54-LFI-FileClass-FilenameContext-BackslashTraversalRemoval-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Valid/Case55-LFI-FileClass-FilenameContext-UnixTraversalRemoval-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Valid/Case56-LFI-FileClass-FilenameContext-WindowsTraversalRemoval-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Valid/Case57-LFI-FileClass-FilenameContext-UnixTraversalRemoval-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Valid/Case58-LFI-FileClass-FilenameContext-WindowsTraversalRemoval-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Valid/Case59-LFI-FileClass-FilenameContext-UnixTraversalRemoval-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Valid/Case60-LFI-FileClass-FilenameContext-WindowsTraversalRemoval-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Valid/Case61-LFI-ContextStream-FilenameContext-SlashTraversalRemoval-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Valid/Case62-LFI-ContextStream-FilenameContext-BackslashTraversalRemoval-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Valid/Case63-LFI-ContextStream-FilenameContext-UnixTraversalRemoval-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Valid/Case64-LFI-ContextStream-FilenameContext-WindowsTraversalRemoval-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Valid/Case65-LFI-ContextStream-FilenameContext-UnixTraversalRemoval-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Valid/Case66-LFI-ContextStream-FilenameContext-WindowsTraversalRemoval-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Valid/Case67-LFI-ContextStream-FilenameContext-UnixTraversalRemoval-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-200Valid/Case68-LFI-ContextStream-FilenameContext-WindowsTraversalRemoval-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
Local File Include POST 302 Redirect |
100% |
||
| Individual Tests | Rule | Pass | Fail |
| Top Level: /LFI-Detection-Evaluation-POST-302Redirect/ | 52 | 0 | |
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-302Redirect/Case01-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-302Redirect/Case02-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-302Redirect/Case03-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultRelativeInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-302Redirect/Case04-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultRelativeInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-302Redirect/Case05-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-302Redirect/Case06-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultInvalidInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-302Redirect/Case07-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-302Redirect/Case08-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultEmptyInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-302Redirect/Case09-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-302Redirect/Case10-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultFullInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-302Redirect/Case11-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-302Redirect/Case12-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultInvalidInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-302Redirect/Case13-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-302Redirect/Case14-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultEmptyInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-302Redirect/Case15-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-302Redirect/Case16-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-302Redirect/Case17-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-302Redirect/Case18-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultInvalidInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-302Redirect/Case19-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-302Redirect/Case20-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultEmptyInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-302Redirect/Case21-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-302Redirect/Case22-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-302Redirect/Case23-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-302Redirect/Case24-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-302Redirect/Case25-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-302Redirect/Case26-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-302Redirect/Case27-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-302Redirect/Case28-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-302Redirect/Case29-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-302Redirect/Case30-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-302Redirect/Case31-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-302Redirect/Case32-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-302Redirect/Case33-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-302Redirect/Case34-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-302Redirect/Case35-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-302Redirect/Case36-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-302Redirect/Case37-LFI-FileClass-FilenameContext-SlashTraversalValidation-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-302Redirect/Case38-LFI-FileClass-FilenameContext-BackslashTraversalValidation-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-302Redirect/Case39-LFI-FileClass-FilenameContext-UnixTraversalValidation-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-302Redirect/Case40-LFI-FileClass-FilenameContext-WindowsTraversalValidation-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-302Redirect/Case41-LFI-FileClass-FilenameContext-UnixTraversalValidation-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-302Redirect/Case42-LFI-FileClass-FilenameContext-WindowsTraversalValidation-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-302Redirect/Case43-LFI-FileClass-FilenameContext-UnixTraversalValidation-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-302Redirect/Case44-LFI-FileClass-FilenameContext-WindowsTraversalValidation-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-302Redirect/Case45-LFI-ContextStream-FilenameContext-SlashTraversalValidation-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-302Redirect/Case46-LFI-ContextStream-FilenameContext-BackslashTraversalValidation-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-302Redirect/Case47-LFI-ContextStream-FilenameContext-UnixTraversalValidation-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-302Redirect/Case48-LFI-ContextStream-FilenameContext-WindowsTraversalValidation-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-302Redirect/Case49-LFI-ContextStream-FilenameContext-UnixTraversalValidation-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-302Redirect/Case50-LFI-ContextStream-FilenameContext-WindowsTraversalValidation-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-302Redirect/Case51-LFI-ContextStream-FilenameContext-UnixTraversalValidation-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-302Redirect/Case52-LFI-ContextStream-FilenameContext-WindowsTraversalValidation-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-302Redirect/Case53-LFI-FileClass-FilenameContext-SlashTraversalRemoval-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-302Redirect/Case54-LFI-FileClass-FilenameContext-BackslashTraversalRemoval-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-302Redirect/Case55-LFI-FileClass-FilenameContext-UnixTraversalRemoval-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-302Redirect/Case56-LFI-FileClass-FilenameContext-WindowsTraversalRemoval-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-302Redirect/Case57-LFI-FileClass-FilenameContext-UnixTraversalRemoval-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-302Redirect/Case58-LFI-FileClass-FilenameContext-WindowsTraversalRemoval-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-302Redirect/Case59-LFI-FileClass-FilenameContext-UnixTraversalRemoval-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-302Redirect/Case60-LFI-FileClass-FilenameContext-WindowsTraversalRemoval-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-302Redirect/Case61-LFI-ContextStream-FilenameContext-SlashTraversalRemoval-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-302Redirect/Case62-LFI-ContextStream-FilenameContext-BackslashTraversalRemoval-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-302Redirect/Case63-LFI-ContextStream-FilenameContext-UnixTraversalRemoval-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-302Redirect/Case64-LFI-ContextStream-FilenameContext-WindowsTraversalRemoval-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-302Redirect/Case65-LFI-ContextStream-FilenameContext-UnixTraversalRemoval-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-302Redirect/Case66-LFI-ContextStream-FilenameContext-WindowsTraversalRemoval-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-302Redirect/Case67-LFI-ContextStream-FilenameContext-UnixTraversalRemoval-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-302Redirect/Case68-LFI-ContextStream-FilenameContext-WindowsTraversalRemoval-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
Local File Include POST 404 Error |
100% |
||
| Individual Tests | Rule | Pass | Fail |
| Top Level: /LFI-Detection-Evaluation-POST-404Error/ | 52 | 0 | |
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-404Error/Case01-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-404Error/Case02-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-404Error/Case03-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultRelativeInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-404Error/Case04-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultRelativeInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-404Error/Case05-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-404Error/Case06-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultInvalidInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-404Error/Case07-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-404Error/Case08-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultEmptyInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-404Error/Case09-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-404Error/Case10-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultFullInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-404Error/Case11-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-404Error/Case12-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultInvalidInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-404Error/Case13-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-404Error/Case14-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultEmptyInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-404Error/Case15-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-404Error/Case16-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-404Error/Case17-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-404Error/Case18-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultInvalidInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-404Error/Case19-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-404Error/Case20-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultEmptyInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-404Error/Case21-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-404Error/Case22-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-404Error/Case23-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-404Error/Case24-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-404Error/Case25-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-404Error/Case26-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-404Error/Case27-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-404Error/Case28-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-404Error/Case29-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-404Error/Case30-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-404Error/Case31-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-404Error/Case32-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-404Error/Case33-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-404Error/Case34-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-404Error/Case35-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-404Error/Case36-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-404Error/Case37-LFI-FileClass-FilenameContext-SlashTraversalValidation-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-404Error/Case38-LFI-FileClass-FilenameContext-BackslashTraversalValidation-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-404Error/Case39-LFI-FileClass-FilenameContext-UnixTraversalValidation-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-404Error/Case40-LFI-FileClass-FilenameContext-WindowsTraversalValidation-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-404Error/Case41-LFI-FileClass-FilenameContext-UnixTraversalValidation-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-404Error/Case42-LFI-FileClass-FilenameContext-WindowsTraversalValidation-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-404Error/Case43-LFI-FileClass-FilenameContext-UnixTraversalValidation-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-404Error/Case44-LFI-FileClass-FilenameContext-WindowsTraversalValidation-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-404Error/Case45-LFI-ContextStream-FilenameContext-SlashTraversalValidation-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-404Error/Case46-LFI-ContextStream-FilenameContext-BackslashTraversalValidation-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-404Error/Case47-LFI-ContextStream-FilenameContext-UnixTraversalValidation-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-404Error/Case48-LFI-ContextStream-FilenameContext-WindowsTraversalValidation-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-404Error/Case49-LFI-ContextStream-FilenameContext-UnixTraversalValidation-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-404Error/Case50-LFI-ContextStream-FilenameContext-WindowsTraversalValidation-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-404Error/Case51-LFI-ContextStream-FilenameContext-UnixTraversalValidation-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-404Error/Case52-LFI-ContextStream-FilenameContext-WindowsTraversalValidation-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-404Error/Case53-LFI-FileClass-FilenameContext-SlashTraversalRemoval-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-404Error/Case54-LFI-FileClass-FilenameContext-BackslashTraversalRemoval-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-404Error/Case55-LFI-FileClass-FilenameContext-UnixTraversalRemoval-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-404Error/Case56-LFI-FileClass-FilenameContext-WindowsTraversalRemoval-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-404Error/Case57-LFI-FileClass-FilenameContext-UnixTraversalRemoval-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-404Error/Case58-LFI-FileClass-FilenameContext-WindowsTraversalRemoval-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-404Error/Case59-LFI-FileClass-FilenameContext-UnixTraversalRemoval-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-404Error/Case60-LFI-FileClass-FilenameContext-WindowsTraversalRemoval-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-404Error/Case61-LFI-ContextStream-FilenameContext-SlashTraversalRemoval-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-404Error/Case62-LFI-ContextStream-FilenameContext-BackslashTraversalRemoval-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-404Error/Case63-LFI-ContextStream-FilenameContext-UnixTraversalRemoval-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-404Error/Case64-LFI-ContextStream-FilenameContext-WindowsTraversalRemoval-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-404Error/Case65-LFI-ContextStream-FilenameContext-UnixTraversalRemoval-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-404Error/Case66-LFI-ContextStream-FilenameContext-WindowsTraversalRemoval-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-404Error/Case67-LFI-ContextStream-FilenameContext-UnixTraversalRemoval-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-404Error/Case68-LFI-ContextStream-FilenameContext-WindowsTraversalRemoval-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
Local File Include POST 500 Error |
100% |
||
| Individual Tests | Rule | Pass | Fail |
| Top Level: /LFI-Detection-Evaluation-POST-500Error/ | 52 | 0 | |
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-500Error/Case01-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-500Error/Case02-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-500Error/Case03-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultRelativeInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-500Error/Case04-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultRelativeInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-500Error/Case05-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-500Error/Case06-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultInvalidInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-500Error/Case07-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-500Error/Case08-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultEmptyInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-500Error/Case09-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-500Error/Case10-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultFullInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-500Error/Case11-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-500Error/Case12-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultInvalidInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-500Error/Case13-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-500Error/Case14-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultEmptyInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-500Error/Case15-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-500Error/Case16-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-500Error/Case17-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-500Error/Case18-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultInvalidInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-500Error/Case19-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-500Error/Case20-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultEmptyInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-500Error/Case21-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-500Error/Case22-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-500Error/Case23-LFI-FileClass-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-500Error/Case24-LFI-FileClass-FilenameContext-Unrestricted-FileDirective-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-500Error/Case25-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-500Error/Case26-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-500Error/Case27-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-500Error/Case28-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-500Error/Case29-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-500Error/Case30-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-500Error/Case31-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-500Error/Case32-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-500Error/Case33-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-500Error/Case34-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-500Error/Case35-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultInvalidInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-500Error/Case36-LFI-ContextStream-FilenameContext-Unrestricted-OSPath-DefaultEmptyInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-500Error/Case37-LFI-FileClass-FilenameContext-SlashTraversalValidation-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-500Error/Case38-LFI-FileClass-FilenameContext-BackslashTraversalValidation-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-500Error/Case39-LFI-FileClass-FilenameContext-UnixTraversalValidation-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-500Error/Case40-LFI-FileClass-FilenameContext-WindowsTraversalValidation-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-500Error/Case41-LFI-FileClass-FilenameContext-UnixTraversalValidation-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-500Error/Case42-LFI-FileClass-FilenameContext-WindowsTraversalValidation-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-500Error/Case43-LFI-FileClass-FilenameContext-UnixTraversalValidation-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-500Error/Case44-LFI-FileClass-FilenameContext-WindowsTraversalValidation-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-500Error/Case45-LFI-ContextStream-FilenameContext-SlashTraversalValidation-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-500Error/Case46-LFI-ContextStream-FilenameContext-BackslashTraversalValidation-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-500Error/Case47-LFI-ContextStream-FilenameContext-UnixTraversalValidation-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-500Error/Case48-LFI-ContextStream-FilenameContext-WindowsTraversalValidation-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-500Error/Case49-LFI-ContextStream-FilenameContext-UnixTraversalValidation-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-500Error/Case50-LFI-ContextStream-FilenameContext-WindowsTraversalValidation-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-500Error/Case51-LFI-ContextStream-FilenameContext-UnixTraversalValidation-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-500Error/Case52-LFI-ContextStream-FilenameContext-WindowsTraversalValidation-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-500Error/Case53-LFI-FileClass-FilenameContext-SlashTraversalRemoval-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-500Error/Case54-LFI-FileClass-FilenameContext-BackslashTraversalRemoval-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-500Error/Case55-LFI-FileClass-FilenameContext-UnixTraversalRemoval-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-500Error/Case56-LFI-FileClass-FilenameContext-WindowsTraversalRemoval-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-500Error/Case57-LFI-FileClass-FilenameContext-UnixTraversalRemoval-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-500Error/Case58-LFI-FileClass-FilenameContext-WindowsTraversalRemoval-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-500Error/Case59-LFI-FileClass-FilenameContext-UnixTraversalRemoval-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-500Error/Case60-LFI-FileClass-FilenameContext-WindowsTraversalRemoval-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-500Error/Case61-LFI-ContextStream-FilenameContext-SlashTraversalRemoval-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-500Error/Case62-LFI-ContextStream-FilenameContext-BackslashTraversalRemoval-OSPath-DefaultFullInput-AnyPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-500Error/Case63-LFI-ContextStream-FilenameContext-UnixTraversalRemoval-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-500Error/Case64-LFI-ContextStream-FilenameContext-WindowsTraversalRemoval-OSPath-DefaultFullInput-NoPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-500Error/Case65-LFI-ContextStream-FilenameContext-UnixTraversalRemoval-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-500Error/Case66-LFI-ContextStream-FilenameContext-WindowsTraversalRemoval-OSPath-DefaultFullInput-SlashPathReq-Read.jsp | 6 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-500Error/Case67-LFI-ContextStream-FilenameContext-UnixTraversalRemoval-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ⚠️ Broken |
|
| http://127.0.0.1:8080/wavsep/active/LFI/LFI-Detection-Evaluation-POST-500Error/Case68-LFI-ContextStream-FilenameContext-WindowsTraversalRemoval-OSPath-DefaultFullInput-BackslashPathReq-Read.jsp | 6 | ✓ Pass |
|
Remote File Include GET 200 Error |
100% |
||
| Individual Tests | Rule | Pass | Fail |
| Top Level: /RFI-Detection-Evaluation-GET-200Error/ | 9 | 0 | |
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-GET-200Error/Case01-RFI-UrlClass-FilenameContext-Unrestricted-HttpURL-DefaultFullInput-AnyPathReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-GET-200Error/Case02-RFI-UrlClass-FilenameContext-Unrestricted-HttpURL-DefaultRelativeInput-AnyPathReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-GET-200Error/Case03-RFI-UrlClass-FilenameContext-Unrestricted-HttpURL-DefaultInvalidInput-AnyPathReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-GET-200Error/Case04-RFI-UrlClass-FilenameContext-Unrestricted-HttpURL-DefaultEmptyInput-AnyPathReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-GET-200Error/Case05-RFI-UrlClass-FilenameContext-Unrestricted-HttpURL-DefaultFullInput-NoProtocolReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-GET-200Error/Case06-RFI-UrlClass-FilenameContext-Unrestricted-HttpURL-DefaultInvalidInput-NoProtocolReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-GET-200Error/Case07-RFI-UrlClass-FilenameContext-Unrestricted-HttpURL-DefaultEmptyInput-NoProtocolReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-GET-200Error/Case08-RFI-UrlClass-FilenameContext-HttpInputValidation-HttpURL-DefaultRelativeInput-AnyPathReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-GET-200Error/Case09-RFI-UrlClass-FilenameContext-HttpInputRemoval-HttpURL-DefaultRelativeInput-AnyPathReq-Read.jsp | 7 | ✓ Pass |
|
Remote File Include GET 200 Identical |
100% |
||
| Individual Tests | Rule | Pass | Fail |
| Top Level: /RFI-Detection-Evaluation-GET-200Identical/ | 9 | 0 | |
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-GET-200Identical/Case01-RFI-UrlClass-FilenameContext-Unrestricted-HttpURL-DefaultFullInput-AnyPathReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-GET-200Identical/Case02-RFI-UrlClass-FilenameContext-Unrestricted-HttpURL-DefaultRelativeInput-AnyPathReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-GET-200Identical/Case03-RFI-UrlClass-FilenameContext-Unrestricted-HttpURL-DefaultInvalidInput-AnyPathReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-GET-200Identical/Case04-RFI-UrlClass-FilenameContext-Unrestricted-HttpURL-DefaultEmptyInput-AnyPathReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-GET-200Identical/Case05-RFI-UrlClass-FilenameContext-Unrestricted-HttpURL-DefaultFullInput-NoProtocolReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-GET-200Identical/Case06-RFI-UrlClass-FilenameContext-Unrestricted-HttpURL-DefaultInvalidInput-NoProtocolReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-GET-200Identical/Case07-RFI-UrlClass-FilenameContext-Unrestricted-HttpURL-DefaultEmptyInput-NoProtocolReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-GET-200Identical/Case08-RFI-UrlClass-FilenameContext-HttpInputValidation-HttpURL-DefaultRelativeInput-AnyPathReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-GET-200Identical/Case09-RFI-UrlClass-FilenameContext-HttpInputRemoval-HttpURL-DefaultRelativeInput-AnyPathReq-Read.jsp | 7 | ✓ Pass |
|
Remote File Include GET 200 Valid |
100% |
||
| Individual Tests | Rule | Pass | Fail |
| Top Level: /RFI-Detection-Evaluation-GET-200Valid/ | 9 | 0 | |
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-GET-200Valid/Case01-RFI-UrlClass-FilenameContext-Unrestricted-HttpURL-DefaultFullInput-AnyPathReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-GET-200Valid/Case02-RFI-UrlClass-FilenameContext-Unrestricted-HttpURL-DefaultRelativeInput-AnyPathReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-GET-200Valid/Case03-RFI-UrlClass-FilenameContext-Unrestricted-HttpURL-DefaultInvalidInput-AnyPathReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-GET-200Valid/Case04-RFI-UrlClass-FilenameContext-Unrestricted-HttpURL-DefaultEmptyInput-AnyPathReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-GET-200Valid/Case05-RFI-UrlClass-FilenameContext-Unrestricted-HttpURL-DefaultFullInput-NoProtocolReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-GET-200Valid/Case06-RFI-UrlClass-FilenameContext-Unrestricted-HttpURL-DefaultInvalidInput-NoProtocolReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-GET-200Valid/Case07-RFI-UrlClass-FilenameContext-Unrestricted-HttpURL-DefaultEmptyInput-NoProtocolReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-GET-200Valid/Case08-RFI-UrlClass-FilenameContext-HttpInputValidation-HttpURL-DefaultRelativeInput-AnyPathReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-GET-200Valid/Case09-RFI-UrlClass-FilenameContext-HttpInputRemoval-HttpURL-DefaultRelativeInput-AnyPathReq-Read.jsp | 7 | ✓ Pass |
|
Remote File Include GET 302 Redirect |
100% |
||
| Individual Tests | Rule | Pass | Fail |
| Top Level: /RFI-Detection-Evaluation-GET-302Redirect/ | 9 | 0 | |
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-GET-302Redirect/Case01-RFI-UrlClass-FilenameContext-Unrestricted-HttpURL-DefaultFullInput-AnyPathReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-GET-302Redirect/Case02-RFI-UrlClass-FilenameContext-Unrestricted-HttpURL-DefaultRelativeInput-AnyPathReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-GET-302Redirect/Case03-RFI-UrlClass-FilenameContext-Unrestricted-HttpURL-DefaultInvalidInput-AnyPathReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-GET-302Redirect/Case04-RFI-UrlClass-FilenameContext-Unrestricted-HttpURL-DefaultEmptyInput-AnyPathReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-GET-302Redirect/Case05-RFI-UrlClass-FilenameContext-Unrestricted-HttpURL-DefaultFullInput-NoProtocolReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-GET-302Redirect/Case06-RFI-UrlClass-FilenameContext-Unrestricted-HttpURL-DefaultInvalidInput-NoProtocolReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-GET-302Redirect/Case07-RFI-UrlClass-FilenameContext-Unrestricted-HttpURL-DefaultEmptyInput-NoProtocolReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-GET-302Redirect/Case08-RFI-UrlClass-FilenameContext-HttpInputValidation-HttpURL-DefaultRelativeInput-AnyPathReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-GET-302Redirect/Case09-RFI-UrlClass-FilenameContext-HttpInputRemoval-HttpURL-DefaultRelativeInput-AnyPathReq-Read.jsp | 7 | ✓ Pass |
|
Remote File Include GET 404 Error |
100% |
||
| Individual Tests | Rule | Pass | Fail |
| Top Level: /RFI-Detection-Evaluation-GET-404Error/ | 9 | 0 | |
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-GET-404Error/Case01-RFI-UrlClass-FilenameContext-Unrestricted-HttpURL-DefaultFullInput-AnyPathReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-GET-404Error/Case02-RFI-UrlClass-FilenameContext-Unrestricted-HttpURL-DefaultRelativeInput-AnyPathReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-GET-404Error/Case03-RFI-UrlClass-FilenameContext-Unrestricted-HttpURL-DefaultInvalidInput-AnyPathReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-GET-404Error/Case04-RFI-UrlClass-FilenameContext-Unrestricted-HttpURL-DefaultEmptyInput-AnyPathReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-GET-404Error/Case05-RFI-UrlClass-FilenameContext-Unrestricted-HttpURL-DefaultFullInput-NoProtocolReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-GET-404Error/Case06-RFI-UrlClass-FilenameContext-Unrestricted-HttpURL-DefaultInvalidInput-NoProtocolReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-GET-404Error/Case07-RFI-UrlClass-FilenameContext-Unrestricted-HttpURL-DefaultEmptyInput-NoProtocolReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-GET-404Error/Case08-RFI-UrlClass-FilenameContext-HttpInputValidation-HttpURL-DefaultRelativeInput-AnyPathReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-GET-404Error/Case09-RFI-UrlClass-FilenameContext-HttpInputRemoval-HttpURL-DefaultRelativeInput-AnyPathReq-Read.jsp | 7 | ✓ Pass |
|
Remote File Include GET 500 Error |
100% |
||
| Individual Tests | Rule | Pass | Fail |
| Top Level: /RFI-Detection-Evaluation-GET-500Error/ | 9 | 0 | |
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-GET-500Error/Case01-RFI-UrlClass-FilenameContext-Unrestricted-HttpURL-DefaultFullInput-AnyPathReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-GET-500Error/Case02-RFI-UrlClass-FilenameContext-Unrestricted-HttpURL-DefaultRelativeInput-AnyPathReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-GET-500Error/Case03-RFI-UrlClass-FilenameContext-Unrestricted-HttpURL-DefaultInvalidInput-AnyPathReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-GET-500Error/Case04-RFI-UrlClass-FilenameContext-Unrestricted-HttpURL-DefaultEmptyInput-AnyPathReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-GET-500Error/Case05-RFI-UrlClass-FilenameContext-Unrestricted-HttpURL-DefaultFullInput-NoProtocolReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-GET-500Error/Case06-RFI-UrlClass-FilenameContext-Unrestricted-HttpURL-DefaultInvalidInput-NoProtocolReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-GET-500Error/Case07-RFI-UrlClass-FilenameContext-Unrestricted-HttpURL-DefaultEmptyInput-NoProtocolReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-GET-500Error/Case08-RFI-UrlClass-FilenameContext-HttpInputValidation-HttpURL-DefaultRelativeInput-AnyPathReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-GET-500Error/Case09-RFI-UrlClass-FilenameContext-HttpInputRemoval-HttpURL-DefaultRelativeInput-AnyPathReq-Read.jsp | 7 | ✓ Pass |
|
Remote File Include GET False Positives |
100% |
||
| Individual Tests | Rule | Pass | Fail |
| Top Level: /RFI-FalsePositives-GET/ | 6 | 0 | |
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-FalsePositives-GET/Case01-RFI-FalsePositive-Forward-TextHtmlValidResponse-FilenameContext-Unrestricted-OSPath-DefaultRelativeInput-NoPathReq-Read.jsp | ✓ Pass |
||
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-FalsePositives-GET/Case02-RFI-FalsePositive-OpenRedirect-TextHtmlValidResponse-FilenameContext-Unrestricted-OSPath-DefaultRelativeInput-NoPathReq-Read.jsp | ✓ Pass |
||
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-FalsePositives-GET/Case03-RFI-FalsePositive-UrlClass-TextHtmlValidResponse-FilenameContext-WhiteList-OSPath-DefaultRelativeInput-NoPathReq-Read.jsp | ✓ Pass |
||
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-FalsePositives-GET/Case04-RFI-FalsePositive-UrlClass-TextHtmlValidResponse-FilenameContext-TraversalRemovalAndWhiteList-OSPath-DefaultRelativeInput-NoPathReq-Read.jsp | ✓ Pass |
||
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-FalsePositives-GET/Case05-RFI-FalsePositive-UrlClass-TextHtmlValidResponse-FilenameContext-EnumerationResponseOnly-OSPath-DefaultRelativeInput-NoPathReq-Read.jsp | ✓ Pass |
||
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-FalsePositives-GET/Case06-RFI-FalsePositive-UrlClass-TextHtmlValidResponse-FilenameContext-InputNotUsed-OSPath-DefaultRelativeInput-NoPathReq-Read.jsp | ✓ Pass |
||
Remote File Include POST 200 Error |
100% |
||
| Individual Tests | Rule | Pass | Fail |
| Top Level: /RFI-Detection-Evaluation-POST-200Error/ | 9 | 0 | |
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-POST-200Error/Case01-RFI-UrlClass-FilenameContext-Unrestricted-HttpURL-DefaultFullInput-AnyPathReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-POST-200Error/Case02-RFI-UrlClass-FilenameContext-Unrestricted-HttpURL-DefaultRelativeInput-AnyPathReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-POST-200Error/Case03-RFI-UrlClass-FilenameContext-Unrestricted-HttpURL-DefaultInvalidInput-AnyPathReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-POST-200Error/Case04-RFI-UrlClass-FilenameContext-Unrestricted-HttpURL-DefaultEmptyInput-AnyPathReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-POST-200Error/Case05-RFI-UrlClass-FilenameContext-Unrestricted-HttpURL-DefaultFullInput-NoProtocolReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-POST-200Error/Case06-RFI-UrlClass-FilenameContext-Unrestricted-HttpURL-DefaultInvalidInput-NoProtocolReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-POST-200Error/Case07-RFI-UrlClass-FilenameContext-Unrestricted-HttpURL-DefaultEmptyInput-NoProtocolReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-POST-200Error/Case08-RFI-UrlClass-FilenameContext-HttpInputValidation-HttpURL-DefaultRelativeInput-AnyPathReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-POST-200Error/Case09-RFI-UrlClass-FilenameContext-HttpInputRemoval-HttpURL-DefaultRelativeInput-AnyPathReq-Read.jsp | 7 | ✓ Pass |
|
Remote File Include POST 200 Identical |
100% |
||
| Individual Tests | Rule | Pass | Fail |
| Top Level: /RFI-Detection-Evaluation-POST-200Identical/ | 9 | 0 | |
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-POST-200Identical/Case01-RFI-UrlClass-FilenameContext-Unrestricted-HttpURL-DefaultFullInput-AnyPathReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-POST-200Identical/Case02-RFI-UrlClass-FilenameContext-Unrestricted-HttpURL-DefaultRelativeInput-AnyPathReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-POST-200Identical/Case03-RFI-UrlClass-FilenameContext-Unrestricted-HttpURL-DefaultInvalidInput-AnyPathReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-POST-200Identical/Case04-RFI-UrlClass-FilenameContext-Unrestricted-HttpURL-DefaultEmptyInput-AnyPathReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-POST-200Identical/Case05-RFI-UrlClass-FilenameContext-Unrestricted-HttpURL-DefaultFullInput-NoProtocolReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-POST-200Identical/Case06-RFI-UrlClass-FilenameContext-Unrestricted-HttpURL-DefaultInvalidInput-NoProtocolReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-POST-200Identical/Case07-RFI-UrlClass-FilenameContext-Unrestricted-HttpURL-DefaultEmptyInput-NoProtocolReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-POST-200Identical/Case08-RFI-UrlClass-FilenameContext-HttpInputValidation-HttpURL-DefaultRelativeInput-AnyPathReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-POST-200Identical/Case09-RFI-UrlClass-FilenameContext-HttpInputRemoval-HttpURL-DefaultRelativeInput-AnyPathReq-Read.jsp | 7 | ✓ Pass |
|
Remote File Include POST 200 Valid |
100% |
||
| Individual Tests | Rule | Pass | Fail |
| Top Level: /RFI-Detection-Evaluation-POST-200Valid/ | 9 | 0 | |
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-POST-200Valid/Case01-RFI-UrlClass-FilenameContext-Unrestricted-HttpURL-DefaultFullInput-AnyPathReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-POST-200Valid/Case02-RFI-UrlClass-FilenameContext-Unrestricted-HttpURL-DefaultRelativeInput-AnyPathReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-POST-200Valid/Case03-RFI-UrlClass-FilenameContext-Unrestricted-HttpURL-DefaultInvalidInput-AnyPathReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-POST-200Valid/Case04-RFI-UrlClass-FilenameContext-Unrestricted-HttpURL-DefaultEmptyInput-AnyPathReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-POST-200Valid/Case05-RFI-UrlClass-FilenameContext-Unrestricted-HttpURL-DefaultFullInput-NoProtocolReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-POST-200Valid/Case06-RFI-UrlClass-FilenameContext-Unrestricted-HttpURL-DefaultInvalidInput-NoProtocolReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-POST-200Valid/Case07-RFI-UrlClass-FilenameContext-Unrestricted-HttpURL-DefaultEmptyInput-NoProtocolReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-POST-200Valid/Case08-RFI-UrlClass-FilenameContext-HttpInputValidation-HttpURL-DefaultRelativeInput-AnyPathReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-POST-200Valid/Case09-RFI-UrlClass-FilenameContext-HttpInputRemoval-HttpURL-DefaultRelativeInput-AnyPathReq-Read.jsp | 7 | ✓ Pass |
|
Remote File Include POST 302 Redirect |
100% |
||
| Individual Tests | Rule | Pass | Fail |
| Top Level: /RFI-Detection-Evaluation-POST-302Redirect/ | 9 | 0 | |
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-POST-302Redirect/Case01-RFI-UrlClass-FilenameContext-Unrestricted-HttpURL-DefaultFullInput-AnyPathReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-POST-302Redirect/Case02-RFI-UrlClass-FilenameContext-Unrestricted-HttpURL-DefaultRelativeInput-AnyPathReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-POST-302Redirect/Case03-RFI-UrlClass-FilenameContext-Unrestricted-HttpURL-DefaultInvalidInput-AnyPathReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-POST-302Redirect/Case04-RFI-UrlClass-FilenameContext-Unrestricted-HttpURL-DefaultEmptyInput-AnyPathReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-POST-302Redirect/Case05-RFI-UrlClass-FilenameContext-Unrestricted-HttpURL-DefaultFullInput-NoProtocolReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-POST-302Redirect/Case06-RFI-UrlClass-FilenameContext-Unrestricted-HttpURL-DefaultInvalidInput-NoProtocolReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-POST-302Redirect/Case07-RFI-UrlClass-FilenameContext-Unrestricted-HttpURL-DefaultEmptyInput-NoProtocolReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-POST-302Redirect/Case08-RFI-UrlClass-FilenameContext-HttpInputValidation-HttpURL-DefaultRelativeInput-AnyPathReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-POST-302Redirect/Case09-RFI-UrlClass-FilenameContext-HttpInputRemoval-HttpURL-DefaultRelativeInput-AnyPathReq-Read.jsp | 7 | ✓ Pass |
|
Remote File Include POST 404 Error |
100% |
||
| Individual Tests | Rule | Pass | Fail |
| Top Level: /RFI-Detection-Evaluation-POST-404Error/ | 9 | 0 | |
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-POST-404Error/Case01-RFI-UrlClass-FilenameContext-Unrestricted-HttpURL-DefaultFullInput-AnyPathReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-POST-404Error/Case02-RFI-UrlClass-FilenameContext-Unrestricted-HttpURL-DefaultRelativeInput-AnyPathReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-POST-404Error/Case03-RFI-UrlClass-FilenameContext-Unrestricted-HttpURL-DefaultInvalidInput-AnyPathReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-POST-404Error/Case04-RFI-UrlClass-FilenameContext-Unrestricted-HttpURL-DefaultEmptyInput-AnyPathReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-POST-404Error/Case05-RFI-UrlClass-FilenameContext-Unrestricted-HttpURL-DefaultFullInput-NoProtocolReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-POST-404Error/Case06-RFI-UrlClass-FilenameContext-Unrestricted-HttpURL-DefaultInvalidInput-NoProtocolReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-POST-404Error/Case07-RFI-UrlClass-FilenameContext-Unrestricted-HttpURL-DefaultEmptyInput-NoProtocolReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-POST-404Error/Case08-RFI-UrlClass-FilenameContext-HttpInputValidation-HttpURL-DefaultRelativeInput-AnyPathReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-POST-404Error/Case09-RFI-UrlClass-FilenameContext-HttpInputRemoval-HttpURL-DefaultRelativeInput-AnyPathReq-Read.jsp | 7 | ✓ Pass |
|
Remote File Include POST 500 Error |
100% |
||
| Individual Tests | Rule | Pass | Fail |
| Top Level: /RFI-Detection-Evaluation-POST-500Error/ | 9 | 0 | |
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-POST-500Error/Case01-RFI-UrlClass-FilenameContext-Unrestricted-HttpURL-DefaultFullInput-AnyPathReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-POST-500Error/Case02-RFI-UrlClass-FilenameContext-Unrestricted-HttpURL-DefaultRelativeInput-AnyPathReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-POST-500Error/Case03-RFI-UrlClass-FilenameContext-Unrestricted-HttpURL-DefaultInvalidInput-AnyPathReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-POST-500Error/Case04-RFI-UrlClass-FilenameContext-Unrestricted-HttpURL-DefaultEmptyInput-AnyPathReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-POST-500Error/Case05-RFI-UrlClass-FilenameContext-Unrestricted-HttpURL-DefaultFullInput-NoProtocolReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-POST-500Error/Case06-RFI-UrlClass-FilenameContext-Unrestricted-HttpURL-DefaultInvalidInput-NoProtocolReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-POST-500Error/Case07-RFI-UrlClass-FilenameContext-Unrestricted-HttpURL-DefaultEmptyInput-NoProtocolReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-POST-500Error/Case08-RFI-UrlClass-FilenameContext-HttpInputValidation-HttpURL-DefaultRelativeInput-AnyPathReq-Read.jsp | 7 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/RFI/RFI-Detection-Evaluation-POST-500Error/Case09-RFI-UrlClass-FilenameContext-HttpInputRemoval-HttpURL-DefaultRelativeInput-AnyPathReq-Read.jsp | 7 | ✓ Pass |
|
Reflected XSS Cookie Experimental |
0% |
||
| Individual Tests | Rule | Pass | Fail |
| Top Level: /RXSS-Detection-Evaluation-COOKIE-Experimental/ | 0 | 1 | |
| http://127.0.0.1:8080/wavsep/active/Reflected-XSS/RXSS-Detection-Evaluation-COOKIE-Experimental/Case01-Tag2HtmlPageScope.jsp | 40012 | ❌ FAIL |
|
Reflected XSS GET |
84% |
||
| Individual Tests | Rule | Pass | Fail |
| Top Level: /RXSS-Detection-Evaluation-GET/ | 27 | 5 | |
| http://127.0.0.1:8080/wavsep/active/Reflected-XSS/RXSS-Detection-Evaluation-GET/Case01-Tag2HtmlPageScope.jsp | 40012 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Reflected-XSS/RXSS-Detection-Evaluation-GET/Case02-Tag2TagScope.jsp | 40012 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Reflected-XSS/RXSS-Detection-Evaluation-GET/Case03-Tag2TagStructure.jsp | 40012 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Reflected-XSS/RXSS-Detection-Evaluation-GET/Case04-Tag2HtmlComment.jsp | 40012 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Reflected-XSS/RXSS-Detection-Evaluation-GET/Case05-Tag2Frameset.jsp | 40012 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Reflected-XSS/RXSS-Detection-Evaluation-GET/Case06-Event2TagScope.jsp | 40012 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Reflected-XSS/RXSS-Detection-Evaluation-GET/Case07-Event2DoubleQuotePropertyScope.jsp | 40012 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Reflected-XSS/RXSS-Detection-Evaluation-GET/Case08-Event2SingleQuotePropertyScope.jsp | 40012 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Reflected-XSS/RXSS-Detection-Evaluation-GET/Case09-SrcProperty2TagStructure.jsp | 40012 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Reflected-XSS/RXSS-Detection-Evaluation-GET/Case10-Js2DoubleQuoteJsEventScope.jsp | 40012 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Reflected-XSS/RXSS-Detection-Evaluation-GET/Case11-Js2SingleQuoteJsEventScope.jsp | 40012 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Reflected-XSS/RXSS-Detection-Evaluation-GET/Case12-Js2JsEventScope.jsp | 40012 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Reflected-XSS/RXSS-Detection-Evaluation-GET/Case13-Vbs2DoubleQuoteVbsEventScope.jsp | 40012 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Reflected-XSS/RXSS-Detection-Evaluation-GET/Case14-Vbs2SingleQuoteVbsEventScope.jsp | 40012 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Reflected-XSS/RXSS-Detection-Evaluation-GET/Case15-Vbs2VbsEventScope.jsp | 40012 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Reflected-XSS/RXSS-Detection-Evaluation-GET/Case16-Js2ScriptSupportingProperty.jsp | 40012 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Reflected-XSS/RXSS-Detection-Evaluation-GET/Case17-Js2PropertyJsScopeDoubleQuoteDelimiter.jsp | 40012 | ❌ FAIL |
|
| http://127.0.0.1:8080/wavsep/active/Reflected-XSS/RXSS-Detection-Evaluation-GET/Case18-Js2PropertyJsScopeSingleQuoteDelimiter.jsp | 40012 | ❌ FAIL |
|
| http://127.0.0.1:8080/wavsep/active/Reflected-XSS/RXSS-Detection-Evaluation-GET/Case19-Js2PropertyJsScope.jsp | 40012 | ❌ FAIL |
|
| http://127.0.0.1:8080/wavsep/active/Reflected-XSS/RXSS-Detection-Evaluation-GET/Case20-Vbs2PropertyVbsScopeDoubleQuoteDelimiter.jsp | 40012 | ❌ FAIL |
|
| http://127.0.0.1:8080/wavsep/active/Reflected-XSS/RXSS-Detection-Evaluation-GET/Case21-Vbs2PropertyVbsScope.jsp | 40012 | ❌ FAIL |
|
| http://127.0.0.1:8080/wavsep/active/Reflected-XSS/RXSS-Detection-Evaluation-GET/Case22-Js2ScriptTagDoubleQuoteDelimiter.jsp | 40012 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Reflected-XSS/RXSS-Detection-Evaluation-GET/Case23-Js2ScriptTagSingleQuoteDelimiter.jsp | 40012 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Reflected-XSS/RXSS-Detection-Evaluation-GET/Case24-Js2ScriptTag.jsp | 40012 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Reflected-XSS/RXSS-Detection-Evaluation-GET/Case25-Vbs2ScriptTagDoubleQuoteDelimiter.jsp | 40012 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Reflected-XSS/RXSS-Detection-Evaluation-GET/Case26-Vbs2ScriptTag.jsp | 40012 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Reflected-XSS/RXSS-Detection-Evaluation-GET/Case27-Js2ScriptTagOLCommentScope.jsp | 40012 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Reflected-XSS/RXSS-Detection-Evaluation-GET/Case28-Js2ScriptTagMLCommentScope.jsp | 40012 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Reflected-XSS/RXSS-Detection-Evaluation-GET/Case29-Vbs2ScriptTagOLCommentScope.jsp | 40012 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Reflected-XSS/RXSS-Detection-Evaluation-GET/Case30-Tag2HtmlPageScopeMultipleVulnerabilities.jsp | 40012 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Reflected-XSS/RXSS-Detection-Evaluation-GET/Case31-Tag2HtmlPageScopeDuringException.jsp | 40012 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Reflected-XSS/RXSS-Detection-Evaluation-GET/Case32-Tag2HtmlPageScopeValidViewstateRequired.jsp | 40012 | ✓ Pass |
|
Reflected XSS GET Experimental |
9% |
||
| Individual Tests | Rule | Pass | Fail |
| Top Level: /RXSS-Detection-Evaluation-GET-Experimental/ | 1 | 10 | |
| http://127.0.0.1:8080/wavsep/active/Reflected-XSS/RXSS-Detection-Evaluation-GET-Experimental/Case01-Tag2HtmlPageScope-StripScriptTag.jsp | 40012 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Reflected-XSS/RXSS-Detection-Evaluation-GET-Experimental/Case03-Tag2HtmlPageScope-ConstantAntiCSRFToken.jsp | 40012 | ❌ FAIL |
|
| http://127.0.0.1:8080/wavsep/active/Reflected-XSS/RXSS-Detection-Evaluation-GET-Experimental/Case04-Tag2HtmlPageScope-ChangingAntiCSRFToken.jsp | 40012 | ❌ FAIL |
|
| http://127.0.0.1:8080/wavsep/active/Reflected-XSS/RXSS-Detection-Evaluation-GET-Experimental/Case04-Tag2HtmlPageScope-ChangingAntiCSRFToken.jsp | 40012 | ❌ FAIL |
|
| http://127.0.0.1:8080/wavsep/active/Reflected-XSS/RXSS-Detection-Evaluation-GET-Experimental/Case05-ScriptlessInjectionInFormTagActionAttribute.jsp | 40012 | ❌ FAIL |
|
| http://127.0.0.1:8080/wavsep/active/Reflected-XSS/RXSS-Detection-Evaluation-GET-Experimental/Case06-ScriptlessInjectionInBaseTagHrefAttribute.jsp | 40012 | ❌ FAIL |
|
| http://127.0.0.1:8080/wavsep/active/Reflected-XSS/RXSS-Detection-Evaluation-GET-Experimental/Case07-ScriptlessInjectionInScriptTagSrcAttribute.jsp | 40012 | ❌ FAIL |
|
| http://127.0.0.1:8080/wavsep/active/Reflected-XSS/RXSS-Detection-Evaluation-GET-Experimental/Case08-InjectionInToCssSelector.jsp | 40012 | ❌ FAIL |
|
| http://127.0.0.1:8080/wavsep/active/Reflected-XSS/RXSS-Detection-Evaluation-GET-Experimental/Case09-InjectionInToCssSelectorAttributeName.jsp | 40012 | ❌ FAIL |
|
| http://127.0.0.1:8080/wavsep/active/Reflected-XSS/RXSS-Detection-Evaluation-GET-Experimental/Case10-InjectionInToCssProperty.jsp | 40012 | ❌ FAIL |
|
| http://127.0.0.1:8080/wavsep/active/Reflected-XSS/RXSS-Detection-Evaluation-GET-Experimental/Case11-InjectionInToCssPropertyValue.jsp | 40012 | ❌ FAIL |
|
Reflected XSS POST |
84% |
||
| Individual Tests | Rule | Pass | Fail |
| Top Level: /RXSS-Detection-Evaluation-POST/ | 27 | 5 | |
| http://127.0.0.1:8080/wavsep/active/Reflected-XSS/RXSS-Detection-Evaluation-POST/Case01-Tag2HtmlPageScope.jsp | 40012 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Reflected-XSS/RXSS-Detection-Evaluation-POST/Case02-Tag2TagScope.jsp | 40012 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Reflected-XSS/RXSS-Detection-Evaluation-POST/Case03-Tag2TagStructure.jsp | 40012 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Reflected-XSS/RXSS-Detection-Evaluation-POST/Case04-Tag2HtmlComment.jsp | 40012 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Reflected-XSS/RXSS-Detection-Evaluation-POST/Case05-Tag2Frameset.jsp | 40012 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Reflected-XSS/RXSS-Detection-Evaluation-POST/Case06-Event2TagScope.jsp | 40012 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Reflected-XSS/RXSS-Detection-Evaluation-POST/Case07-Event2DoubleQuotePropertyScope.jsp | 40012 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Reflected-XSS/RXSS-Detection-Evaluation-POST/Case08-Event2SingleQuotePropertyScope.jsp | 40012 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Reflected-XSS/RXSS-Detection-Evaluation-POST/Case09-SrcProperty2TagStructure.jsp | 40012 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Reflected-XSS/RXSS-Detection-Evaluation-POST/Case10-Js2DoubleQuoteJsEventScope.jsp | 40012 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Reflected-XSS/RXSS-Detection-Evaluation-POST/Case11-Js2SingleQuoteJsEventScope.jsp | 40012 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Reflected-XSS/RXSS-Detection-Evaluation-POST/Case12-Js2JsEventScope.jsp | 40012 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Reflected-XSS/RXSS-Detection-Evaluation-POST/Case13-Vbs2DoubleQuoteVbsEventScope.jsp | 40012 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Reflected-XSS/RXSS-Detection-Evaluation-POST/Case14-Vbs2SingleQuoteVbsEventScope.jsp | 40012 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Reflected-XSS/RXSS-Detection-Evaluation-POST/Case15-Vbs2VbsEventScope.jsp | 40012 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Reflected-XSS/RXSS-Detection-Evaluation-POST/Case16-Js2ScriptSupportingProperty.jsp | 40012 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Reflected-XSS/RXSS-Detection-Evaluation-POST/Case17-Js2PropertyJsScopeDoubleQuoteDelimiter.jsp | 40012 | ❌ FAIL |
|
| http://127.0.0.1:8080/wavsep/active/Reflected-XSS/RXSS-Detection-Evaluation-POST/Case18-Js2PropertyJsScopeSingleQuoteDelimiter.jsp | 40012 | ❌ FAIL |
|
| http://127.0.0.1:8080/wavsep/active/Reflected-XSS/RXSS-Detection-Evaluation-POST/Case19-Js2PropertyJsScope.jsp | 40012 | ❌ FAIL |
|
| http://127.0.0.1:8080/wavsep/active/Reflected-XSS/RXSS-Detection-Evaluation-POST/Case20-Vbs2PropertyVbsScopeDoubleQuoteDelimiter.jsp | 40012 | ❌ FAIL |
|
| http://127.0.0.1:8080/wavsep/active/Reflected-XSS/RXSS-Detection-Evaluation-POST/Case21-Vbs2PropertyVbsScope.jsp | 40012 | ❌ FAIL |
|
| http://127.0.0.1:8080/wavsep/active/Reflected-XSS/RXSS-Detection-Evaluation-POST/Case22-Js2ScriptTagDoubleQuoteDelimiter.jsp | 40012 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Reflected-XSS/RXSS-Detection-Evaluation-POST/Case23-Js2ScriptTagSingleQuoteDelimiter.jsp | 40012 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Reflected-XSS/RXSS-Detection-Evaluation-POST/Case24-Js2ScriptTag.jsp | 40012 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Reflected-XSS/RXSS-Detection-Evaluation-POST/Case25-Vbs2ScriptTagDoubleQuoteDelimiter.jsp | 40012 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Reflected-XSS/RXSS-Detection-Evaluation-POST/Case26-Vbs2ScriptTag.jsp | 40012 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Reflected-XSS/RXSS-Detection-Evaluation-POST/Case27-Js2ScriptTagOLCommentScope.jsp | 40012 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Reflected-XSS/RXSS-Detection-Evaluation-POST/Case28-Js2ScriptTagMLCommentScope.jsp | 40012 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Reflected-XSS/RXSS-Detection-Evaluation-POST/Case29-Vbs2ScriptTagOLCommentScope.jsp | 40012 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Reflected-XSS/RXSS-Detection-Evaluation-POST/Case30-Tag2HtmlPageScopeMultipleVulnerabilities.jsp | 40012 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Reflected-XSS/RXSS-Detection-Evaluation-POST/Case31-Tag2HtmlPageScopeDuringException.jsp | 40012 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Reflected-XSS/RXSS-Detection-Evaluation-POST/Case32-Tag2HtmlPageScopeValidViewstateRequired.jsp | 40012 | ✓ Pass |
|
Reflected XSS POST Experimental |
75% |
||
| Individual Tests | Rule | Pass | Fail |
| Top Level: /RXSS-Detection-Evaluation-POST-Experimental/ | 3 | 1 | |
| http://127.0.0.1:8080/wavsep/active/Reflected-XSS/RXSS-Detection-Evaluation-POST-Experimental/Case01-Tag2HtmlPageScope-StripScriptTag.jsp | 40012 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Reflected-XSS/RXSS-Detection-Evaluation-POST-Experimental/Case02-Tag2HtmlPageScope-SecretVectorGET.jsp | 40012 | ❌ FAIL |
|
| http://127.0.0.1:8080/wavsep/active/Reflected-XSS/RXSS-Detection-Evaluation-POST-Experimental/Case03-Tag2HtmlPageScope-ConstantAntiCSRFToken.jsp | 40012 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Reflected-XSS/RXSS-Detection-Evaluation-POST-Experimental/Case04-Tag2HtmlPageScope-ChangingAntiCSRFToken.jsp | 40012 | ✓ Pass |
|
Reflected XSS GET False Positives |
100% |
||
| Individual Tests | Rule | Pass | Fail |
| Top Level: /RXSS-FalsePositives-GET/ | 7 | 0 | |
| http://127.0.0.1:8080/wavsep/active/Reflected-XSS/RXSS-FalsePositives-GET/Case01-DoubleQuotesAndCrLfEncodingInProperty.jsp | ✓ Pass |
||
| http://127.0.0.1:8080/wavsep/active/Reflected-XSS/RXSS-FalsePositives-GET/Case02-SingleQuotesAndCrLfEncodingInProperty.jsp | ✓ Pass |
||
| http://127.0.0.1:8080/wavsep/active/Reflected-XSS/RXSS-FalsePositives-GET/Case03-DoubleQuotesEqualityAndBracketsEncodingInProperty.jsp | ✓ Pass |
||
| http://127.0.0.1:8080/wavsep/active/Reflected-XSS/RXSS-FalsePositives-GET/Case04-SingleQuotesEqualityAndBracketsEncodingInProperty.jsp | ✓ Pass |
||
| http://127.0.0.1:8080/wavsep/active/Reflected-XSS/RXSS-FalsePositives-GET/Case05-CrlfRemovalInHttpHeader.jsp | ✓ Pass |
||
| http://127.0.0.1:8080/wavsep/active/Reflected-XSS/RXSS-FalsePositives-GET/Case06-QuotesBracketsAndCrLfEncodingInTextProperty.jsp | ✓ Pass |
||
| http://127.0.0.1:8080/wavsep/active/Reflected-XSS/RXSS-FalsePositives-GET/Case07-AngleBracketsEncodingInBody.jsp | ✓ Pass |
||
SQL Injection GET 200 Error |
100% |
||
| Individual Tests | Rule | Pass | Fail |
| Top Level: /SInjection-Detection-Evaluation-GET-200Error/ | 19 | 0 | |
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-GET-200Error/Case01-InjectionInLogin-String-LoginBypass-With200Errors.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-GET-200Error/Case02-InjectionInSearch-String-UnionExploit-With200Errors.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-GET-200Error/Case03-InjectionInCalc-String-BooleanExploit-With200Errors.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-GET-200Error/Case04-InjectionInUpdate-String-CommandInjection-With200Errors.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-GET-200Error/Case05-InjectionInSearchOrderBy-String-BinaryDeliberateRuntimeError-With200Errors.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-GET-200Error/Case06-InjectionInView-Numeric-PermissionBypass-With200Errors.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-GET-200Error/Case07-InjectionInSearch-Numeric-UnionExploit-With200Errors.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-GET-200Error/Case08-InjectionInCalc-Numeric-BooleanExploit-With200Errors.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-GET-200Error/Case09-InjectionInUpdate-Numeric-CommandInjection-With200Errors.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-GET-200Error/Case10-InjectionInSearchOrderBy-Numeric-BinaryDeliberateRuntimeError-With200Errors.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-GET-200Error/Case11-InjectionInView-Date-PermissionBypass-With200Errors.jsp | 40019 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-GET-200Error/Case12-InjectionInSearch-Date-UnionExploit-With200Errors.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-GET-200Error/Case13-InjectionInCalc-Date-BooleanExploit-With200Errors.jsp | 40019 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-GET-200Error/Case14-InjectionInUpdate-Date-CommandInjection-With200Errors.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-GET-200Error/Case15-InjectionInSearch-DateWithoutQuotes-UnionExploit-With200Errors.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-GET-200Error/Case16-InjectionInView-NumericWithoutQuotes-PermissionBypass-With200Errors.jsp | 40019 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-GET-200Error/Case17-InjectionInSearch-NumericWithoutQuotes-UnionExploit-With200Errors.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-GET-200Error/Case18-InjectionInCalc-NumericWithoutQuotes-BooleanExploit-With200Errors.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-GET-200Error/Case19-InjectionInUpdate-NumericWithoutQuotes-CommandInjection-With200Errors.jsp | 40018 | ✓ Pass |
|
SQL Injection GET 200 Error Experimental |
100% |
||
| Individual Tests | Rule | Pass | Fail |
| Top Level: /SInjection-Detection-Evaluation-GET-200Error-Experimental/ | 1 | 0 | |
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-GET-200Error-Experimental/Case01-InjectionInInsertValues-String-BinaryDeliberateRuntimeError-With200Errors.jsp | 40018 | ✓ Pass |
|
SQL Injection GET 200 Identical |
38% |
||
| Individual Tests | Rule | Pass | Fail |
| Top Level: /SInjection-Detection-Evaluation-GET-200Identical/ | 3 | 5 | |
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-GET-200Identical/Case01-InjectionInView-Numeric-Blind-200ValidResponseWithDefaultOnException.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-GET-200Identical/Case02-InjectionInView-String-Blind-200ValidResponseWithDefaultOnException.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-GET-200Identical/Case03-InjectionInView-Date-Blind-200ValidResponseWithDefaultOnException.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-GET-200Identical/Case04-InjectionInUpdate-Numeric-TimeDelayExploit-200Identical.jsp | 40018 | ❌ FAIL |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-GET-200Identical/Case05-InjectionInUpdate-String-TimeDelayExploit-200Identical.jsp | 40018 | ❌ FAIL |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-GET-200Identical/Case06-InjectionInUpdate-Date-TimeDelayExploit-200Identical.jsp | 40018 | ❌ FAIL |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-GET-200Identical/Case07-InjectionInUpdate-NumericWithoutQuotes-TimeDelayExploit-200Identical.jsp | 40018 | ❌ FAIL |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-GET-200Identical/Case08-InjectionInUpdate-DateWithoutQuotes-TimeDelayExploit-200Identical.jsp | 40018 | ❌ FAIL |
|
SQL Injection GET 200 Valid |
95% |
||
| Individual Tests | Rule | Pass | Fail |
| Top Level: /SInjection-Detection-Evaluation-GET-200Valid/ | 18 | 1 | |
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-GET-200Valid/Case01-InjectionInLogin-String-LoginBypass-WithDifferent200Responses.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-GET-200Valid/Case02-InjectionInSearch-String-UnionExploit-WithDifferent200Responses.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-GET-200Valid/Case03-InjectionInCalc-String-BooleanExploit-WithDifferent200Responses.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-GET-200Valid/Case04-InjectionInUpdate-String-CommandInjection-WithDifferent200Responses.jsp | 40018 | ❌ FAIL |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-GET-200Valid/Case05-InjectionInSearchOrderBy-String-BinaryDeliberateRuntimeError-WithDifferent200Responses.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-GET-200Valid/Case06-InjectionInView-Numeric-PermissionBypass-WithDifferent200Responses.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-GET-200Valid/Case07-InjectionInSearch-Numeric-UnionExploit-WithDifferent200Responses.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-GET-200Valid/Case08-InjectionInCalc-Numeric-BooleanExploit-WithDifferent200Responses.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-GET-200Valid/Case09-InjectionInUpdate-Numeric-CommandInjection-WithDifferent200Responses.jsp | 40019 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-GET-200Valid/Case10-InjectionInSearchOrderBy-Numeric-BinaryDeliberateRuntimeError-WithDifferent200Responses.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-GET-200Valid/Case11-InjectionInView-Date-PermissionBypass-WithDifferent200Responses.jsp | 40019 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-GET-200Valid/Case12-InjectionInSearch-Date-UnionExploit-WithDifferent200Responses.jsp | 40019 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-GET-200Valid/Case13-InjectionInCalc-Date-BooleanExploit-WithDifferent200Responses.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-GET-200Valid/Case14-InjectionInUpdate-Date-CommandInjection-WithDifferent200Responses.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-GET-200Valid/Case15-InjectionInSearch-DateWithoutQuotes-UnionExploit-WithDifferent200Responses.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-GET-200Valid/Case16-InjectionInView-NumericWithoutQuotes-PermissionBypass-WithDifferent200Responses.jsp | 40019 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-GET-200Valid/Case17-InjectionInSearch-NumericWithoutQuotes-UnionExploit-WithDifferent200Responses.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-GET-200Valid/Case18-InjectionInCalc-NumericWithoutQuotes-BooleanExploit-WithDifferent200Responses.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-GET-200Valid/Case19-InjectionInUpdate-NumericWithoutQuotes-CommandInjection-WithDifferent200Responses.jsp | 40019 | ✓ Pass |
|
SQL Injection GET 500 Error |
100% |
||
| Individual Tests | Rule | Pass | Fail |
| Top Level: /SInjection-Detection-Evaluation-GET-500Error/ | 19 | 0 | |
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-GET-500Error/Case01-InjectionInLogin-String-LoginBypass-WithErrors.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-GET-500Error/Case02-InjectionInSearch-String-UnionExploit-WithErrors.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-GET-500Error/Case03-InjectionInCalc-String-BooleanExploit-WithErrors.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-GET-500Error/Case04-InjectionInUpdate-String-CommandInjection-WithErrors.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-GET-500Error/Case05-InjectionInSearchOrderBy-String-BinaryDeliberateRuntimeError-WithErrors.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-GET-500Error/Case06-InjectionInView-Numeric-PermissionBypass-WithErrors.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-GET-500Error/Case07-InjectionInSearch-Numeric-UnionExploit-WithErrors.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-GET-500Error/Case08-InjectionInCalc-Numeric-BooleanExploit-WithErrors.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-GET-500Error/Case09-InjectionInUpdate-Numeric-CommandInjection-WithErrors.jsp | 40019 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-GET-500Error/Case10-InjectionInSearchOrderBy-Numeric-BinaryDeliberateRuntimeError-WithErrors.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-GET-500Error/Case11-InjectionInView-Date-PermissionBypass-WithErrors.jsp | 40019 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-GET-500Error/Case12-InjectionInSearch-Date-UnionExploit-WithErrors.jsp | 40019 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-GET-500Error/Case13-InjectionInCalc-Date-BooleanExploit-WithErrors.jsp | 40019 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-GET-500Error/Case14-InjectionInUpdate-Date-CommandInjection-WithErrors.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-GET-500Error/Case15-InjectionInSearch-DateWithoutQuotes-UnionExploit-WithErrors.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-GET-500Error/Case16-InjectionInView-NumericWithoutQuotes-PermissionBypass-WithErrors.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-GET-500Error/Case17-InjectionInSearch-NumericWithoutQuotes-UnionExploit-WithErrors.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-GET-500Error/Case18-InjectionInCalc-NumericWithoutQuotes-BooleanExploit-WithErrors.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-GET-500Error/Case19-InjectionInUpdate-NumericWithoutQuotes-CommandInjection-WithErrors.jsp | 40019 | ✓ Pass |
|
SQL Injection POST 200 Error |
100% |
||
| Individual Tests | Rule | Pass | Fail |
| Top Level: /SInjection-Detection-Evaluation-POST-200Error/ | 19 | 0 | |
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-POST-200Error/Case01-InjectionInLogin-String-LoginBypass-With200Errors.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-POST-200Error/Case02-InjectionInSearch-String-UnionExploit-With200Errors.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-POST-200Error/Case03-InjectionInCalc-String-BooleanExploit-With200Errors.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-POST-200Error/Case04-InjectionInUpdate-String-CommandInjection-With200Errors.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-POST-200Error/Case05-InjectionInSearchOrderBy-String-BinaryDeliberateRuntimeError-With200Errors.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-POST-200Error/Case06-InjectionInView-Numeric-PermissionBypass-With200Errors.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-POST-200Error/Case07-InjectionInSearch-Numeric-UnionExploit-With200Errors.jsp | 40019 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-POST-200Error/Case08-InjectionInCalc-Numeric-BooleanExploit-With200Errors.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-POST-200Error/Case09-InjectionInUpdate-Numeric-CommandInjection-With200Errors.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-POST-200Error/Case10-InjectionInSearchOrderBy-Numeric-BinaryDeliberateRuntimeError-With200Errors.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-POST-200Error/Case11-InjectionInView-Date-PermissionBypass-With200Errors.jsp | 40019 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-POST-200Error/Case12-InjectionInSearch-Date-UnionExploit-With200Errors.jsp | 40019 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-POST-200Error/Case13-InjectionInCalc-Date-BooleanExploit-With200Errors.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-POST-200Error/Case14-InjectionInUpdate-Date-CommandInjection-With200Errors.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-POST-200Error/Case15-InjectionInSearch-DateWithoutQuotes-UnionExploit-With200Errors.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-POST-200Error/Case16-InjectionInView-NumericWithoutQuotes-PermissionBypass-With200Errors.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-POST-200Error/Case17-InjectionInSearch-NumericWithoutQuotes-UnionExploit-With200Errors.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-POST-200Error/Case18-InjectionInCalc-NumericWithoutQuotes-BooleanExploit-With200Errors.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-POST-200Error/Case19-InjectionInUpdate-NumericWithoutQuotes-CommandInjection-With200Errors.jsp | 40018 | ✓ Pass |
|
SQL Injection POST 200 Error Experimental |
100% |
||
| Individual Tests | Rule | Pass | Fail |
| Top Level: /SInjection-Detection-Evaluation-POST-200Error-Experimental/ | 1 | 0 | |
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-POST-200Error-Experimental/Case01-InjectionInInsertValues-String-BinaryDeliberateRuntimeError-With200Errors.jsp | 40018 | ✓ Pass |
|
SQL Injection POST 200 Identical |
38% |
||
| Individual Tests | Rule | Pass | Fail |
| Top Level: /SInjection-Detection-Evaluation-POST-200Identical/ | 3 | 5 | |
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-POST-200Identical/Case01-InjectionInView-Numeric-Blind-200ValidResponseWithDefaultOnException.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-POST-200Identical/Case02-InjectionInView-String-Blind-200ValidResponseWithDefaultOnException.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-POST-200Identical/Case03-InjectionInView-Date-Blind-200ValidResponseWithDefaultOnException.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-POST-200Identical/Case04-InjectionInUpdate-Numeric-TimeDelayExploit-200Identical.jsp | 40018 | ❌ FAIL |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-POST-200Identical/Case05-InjectionInUpdate-String-TimeDelayExploit-200Identical.jsp | 40018 | ❌ FAIL |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-POST-200Identical/Case06-InjectionInUpdate-Date-TimeDelayExploit-200Identical.jsp | 40018 | ❌ FAIL |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-POST-200Identical/Case07-InjectionInUpdate-NumericWithoutQuotes-TimeDelayExploit-200Identical.jsp | 40018 | ❌ FAIL |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-POST-200Identical/Case08-InjectionInUpdate-DateWithoutQuotes-TimeDelayExploit-200Identical.jsp | 40018 | ❌ FAIL |
|
SQL Injection POST 200 Valid |
95% |
||
| Individual Tests | Rule | Pass | Fail |
| Top Level: /SInjection-Detection-Evaluation-POST-200Valid/ | 18 | 1 | |
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-POST-200Valid/Case01-InjectionInLogin-String-LoginBypass-WithDifferent200Responses.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-POST-200Valid/Case02-InjectionInSearch-String-UnionExploit-WithDifferent200Responses.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-POST-200Valid/Case03-InjectionInCalc-String-BooleanExploit-WithDifferent200Responses.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-POST-200Valid/Case04-InjectionInUpdate-String-CommandInjection-WithDifferent200Responses.jsp | 40018 | ❌ FAIL |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-POST-200Valid/Case05-InjectionInSearchOrderBy-String-BinaryDeliberateRuntimeError-WithDifferent200Responses.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-POST-200Valid/Case06-InjectionInView-Numeric-PermissionBypass-WithDifferent200Responses.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-POST-200Valid/Case07-InjectionInSearch-Numeric-UnionExploit-WithDifferent200Responses.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-POST-200Valid/Case08-InjectionInCalc-Numeric-BooleanExploit-WithDifferent200Responses.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-POST-200Valid/Case09-InjectionInUpdate-Numeric-CommandInjection-WithDifferent200Responses.jsp | 40019 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-POST-200Valid/Case10-InjectionInSearchOrderBy-Numeric-BinaryDeliberateRuntimeError-WithDifferent200Responses.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-POST-200Valid/Case11-InjectionInView-Date-PermissionBypass-WithDifferent200Responses.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-POST-200Valid/Case12-InjectionInSearch-Date-UnionExploit-WithDifferent200Responses.jsp | 40019 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-POST-200Valid/Case13-InjectionInCalc-Date-BooleanExploit-WithDifferent200Responses.jsp | 40019 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-POST-200Valid/Case14-InjectionInUpdate-Date-CommandInjection-WithDifferent200Responses.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-POST-200Valid/Case15-InjectionInSearch-DateWithoutQuotes-UnionExploit-WithDifferent200Responses.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-POST-200Valid/Case16-InjectionInView-NumericWithoutQuotes-PermissionBypass-WithDifferent200Responses.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-POST-200Valid/Case17-InjectionInSearch-NumericWithoutQuotes-UnionExploit-WithDifferent200Responses.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-POST-200Valid/Case18-InjectionInCalc-NumericWithoutQuotes-BooleanExploit-WithDifferent200Responses.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-POST-200Valid/Case19-InjectionInUpdate-NumericWithoutQuotes-CommandInjection-WithDifferent200Responses.jsp | 40019 | ✓ Pass |
|
SQL Injection POST 500 Error |
100% |
||
| Individual Tests | Rule | Pass | Fail |
| Top Level: /SInjection-Detection-Evaluation-POST-500Error/ | 19 | 0 | |
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-POST-500Error/Case01-InjectionInLogin-String-LoginBypass-WithErrors.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-POST-500Error/Case02-InjectionInSearch-String-UnionExploit-WithErrors.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-POST-500Error/Case03-InjectionInCalc-String-BooleanExploit-WithErrors.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-POST-500Error/Case04-InjectionInUpdate-String-CommandInjection-WithErrors.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-POST-500Error/Case05-InjectionInSearchOrderBy-String-BinaryDeliberateRuntimeError-WithErrors.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-POST-500Error/Case06-InjectionInView-Numeric-PermissionBypass-WithErrors.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-POST-500Error/Case07-InjectionInSearch-Numeric-UnionExploit-WithErrors.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-POST-500Error/Case08-InjectionInCalc-Numeric-BooleanExploit-WithErrors.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-POST-500Error/Case09-InjectionInUpdate-Numeric-CommandInjection-WithErrors.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-POST-500Error/Case10-InjectionInSearchOrderBy-Numeric-BinaryDeliberateRuntimeError-WithErrors.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-POST-500Error/Case11-InjectionInView-Date-PermissionBypass-WithErrors.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-POST-500Error/Case12-InjectionInSearch-Date-UnionExploit-WithErrors.jsp | 40019 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-POST-500Error/Case13-InjectionInCalc-Date-BooleanExploit-WithErrors.jsp | 40019 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-POST-500Error/Case14-InjectionInUpdate-Date-CommandInjection-WithErrors.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-POST-500Error/Case15-InjectionInSearch-DateWithoutQuotes-UnionExploit-WithErrors.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-POST-500Error/Case16-InjectionInView-NumericWithoutQuotes-PermissionBypass-WithErrors.jsp | 40019 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-POST-500Error/Case17-InjectionInSearch-NumericWithoutQuotes-UnionExploit-WithErrors.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-POST-500Error/Case18-InjectionInCalc-NumericWithoutQuotes-BooleanExploit-WithErrors.jsp | 40018 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-Detection-Evaluation-POST-500Error/Case19-InjectionInUpdate-NumericWithoutQuotes-CommandInjection-WithErrors.jsp | 40018 | ✓ Pass |
|
SQL Injection GET False Positives |
70% |
||
| Individual Tests | Rule | Pass | Fail |
| Top Level: /SInjection-FalsePositives-GET/ | 7 | 3 | |
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-FalsePositives-GET/Case01-FalsePositiveInjectionInLogin-PsAndIv-500ErrorOnIvFailure.jsp | 40018 | ❌ FAIL |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-FalsePositives-GET/Case02-FalsePositiveInjectionInLogin-PsAndIv-500SyntaxErrorOnIvFailure.jsp | 40018 | ❌ FAIL |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-FalsePositives-GET/Case03-FalsePositiveInjectionInLogin-PsAndIv-200ErrorOnIvFailure.jsp | ✓ Pass |
||
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-FalsePositives-GET/Case04-FalsePositiveInjectionInLogin-PsAndIv-200SyntaxErrorOnIvFailure.jsp | ✓ Pass |
||
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-FalsePositives-GET/Case05-FalsePositiveInjectionInLogin-PsAndIv-Different200ValidOnIvFailure.jsp | ✓ Pass |
||
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-FalsePositives-GET/Case06-FalsePositiveInjectionInLogin-HoneyPotNoSQL-Fake500SyntaxErrorOnIvFailure.jsp | 40018 | ❌ FAIL |
|
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-FalsePositives-GET/Case07-FalsePositiveInjectionInLogin-PsAndIv-500ErrorOnUnrelatedSyntaxError.jsp | ✓ Pass |
||
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-FalsePositives-GET/Case08-FalsePositiveInjectionInLogin-PsAndIv-200ErrorOnUnrelatedSyntaxError.jsp | ✓ Pass |
||
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-FalsePositives-GET/Case09-FalsePositiveInjectionInUpdate-PsAndIv-Different200ValidOnIvFailure.jsp | ✓ Pass |
||
| http://127.0.0.1:8080/wavsep/active/SQL-Injection/SInjection-FalsePositives-GET/Case10-FalsePositiveInjectionInUpdate-PsAndIv-Identical200Response.jsp | ✓ Pass |
||
Unvalidated Redirect GET 200 Valid |
100% |
||
| Individual Tests | Rule | Pass | Fail |
| Top Level: /Redirect-JavaScript-Detection-Evaluation-GET-200Valid/ | 15 | 0 | |
| http://127.0.0.1:8080/wavsep/active/Unvalidated-Redirect/Redirect-JavaScript-Detection-Evaluation-GET-200Valid/Case01-Redirect-RedirectMethod-FilenameContext-Unrestricted-HttpURL-DefaultFullInput-AnyPathReq-Read.jsp | 20019 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Unvalidated-Redirect/Redirect-JavaScript-Detection-Evaluation-GET-200Valid/Case02-Redirect-RedirectMethod-FilenameContext-Unrestricted-HttpURL-DefaultRelativeInput-AnyPathReq-Read.jsp | 20019 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Unvalidated-Redirect/Redirect-JavaScript-Detection-Evaluation-GET-200Valid/Case03-Redirect-RedirectMethod-FilenameContext-Unrestricted-HttpURL-DefaultInvalidInput-AnyPathReq-Read.jsp | 20019 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Unvalidated-Redirect/Redirect-JavaScript-Detection-Evaluation-GET-200Valid/Case04-Redirect-RedirectMethod-FilenameContext-Unrestricted-HttpURL-DefaultEmptyInput-AnyPathReq-Read.jsp | 20019 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Unvalidated-Redirect/Redirect-JavaScript-Detection-Evaluation-GET-200Valid/Case05-Redirect-RedirectMethod-FilenameContext-Unrestricted-HttpURL-DefaultPartialInput-PartialPathReq-Read.jsp | 20019 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Unvalidated-Redirect/Redirect-JavaScript-Detection-Evaluation-GET-200Valid/Case06-Redirect-RedirectMethod-FilenameContext-Unrestricted-HttpURL-DefaultInvalidInput-PartialPathReq-Read.jsp | 20019 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Unvalidated-Redirect/Redirect-JavaScript-Detection-Evaluation-GET-200Valid/Case07-Redirect-RedirectMethod-FilenameContext-Unrestricted-HttpURL-DefaultEmptyInput-PartialPathReq-Read.jsp | 20019 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Unvalidated-Redirect/Redirect-JavaScript-Detection-Evaluation-GET-200Valid/Case08-Redirect-RedirectMethod-FilenameContext-HttpInputValidation-HttpURL-DefaultPartialInput-PartialPathReq-Read.jsp | 20019 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Unvalidated-Redirect/Redirect-JavaScript-Detection-Evaluation-GET-200Valid/Case09-Redirect-RedirectMethod-FilenameContext-HttpInputValidation-HttpURL-DefaultRelativeInput-AnyPathReq-Read.jsp | 20019 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Unvalidated-Redirect/Redirect-JavaScript-Detection-Evaluation-GET-200Valid/Case10-Redirect-RedirectMethod-FilenameContext-HttpInputValidation-HttpURL-DefaultInvalidInput-AnyPathReq-Read.jsp | 20019 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Unvalidated-Redirect/Redirect-JavaScript-Detection-Evaluation-GET-200Valid/Case11-Redirect-RedirectMethod-FilenameContext-HttpInputValidation-HttpURL-DefaultEmptyInput-AnyPathReq-Read.jsp | 20019 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Unvalidated-Redirect/Redirect-JavaScript-Detection-Evaluation-GET-200Valid/Case12-Redirect-RedirectMethod-FilenameContext-HttpInputRemoval-HttpURL-DefaultPartialInput-PartialPathReq-Read.jsp | 20019 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Unvalidated-Redirect/Redirect-JavaScript-Detection-Evaluation-GET-200Valid/Case13-Redirect-RedirectMethod-FilenameContext-HttpInputRemoval-HttpURL-DefaultRelativeInput-AnyPathReq-Read.jsp | 20019 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Unvalidated-Redirect/Redirect-JavaScript-Detection-Evaluation-GET-200Valid/Case14-Redirect-RedirectMethod-FilenameContext-HttpInputRemoval-HttpURL-DefaultInvalidInput-AnyPathReq-Read.jsp | 20019 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Unvalidated-Redirect/Redirect-JavaScript-Detection-Evaluation-GET-200Valid/Case15-Redirect-RedirectMethod-FilenameContext-HttpInputRemoval-HttpURL-DefaultEmptyInput-AnyPathReq-Read.jsp | 20019 | ✓ Pass |
|
Unvalidated Redirect GET 200 |
100% |
||
| Individual Tests | Rule | Pass | Fail |
| Top Level: /Redirect-Detection-Evaluation-GET-302Redirect/ | 15 | 0 | |
| http://127.0.0.1:8080/wavsep/active/Unvalidated-Redirect/Redirect-Detection-Evaluation-GET-302Redirect/Case01-Redirect-RedirectMethod-FilenameContext-Unrestricted-HttpURL-DefaultFullInput-AnyPathReq-Read.jsp | 20019 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Unvalidated-Redirect/Redirect-Detection-Evaluation-GET-302Redirect/Case02-Redirect-RedirectMethod-FilenameContext-Unrestricted-HttpURL-DefaultRelativeInput-AnyPathReq-Read.jsp | 20019 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Unvalidated-Redirect/Redirect-Detection-Evaluation-GET-302Redirect/Case03-Redirect-RedirectMethod-FilenameContext-Unrestricted-HttpURL-DefaultInvalidInput-AnyPathReq-Read.jsp | 20019 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Unvalidated-Redirect/Redirect-Detection-Evaluation-GET-302Redirect/Case04-Redirect-RedirectMethod-FilenameContext-Unrestricted-HttpURL-DefaultEmptyInput-AnyPathReq-Read.jsp | 20019 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Unvalidated-Redirect/Redirect-Detection-Evaluation-GET-302Redirect/Case05-Redirect-RedirectMethod-FilenameContext-Unrestricted-HttpURL-DefaultPartialInput-PartialPathReq-Read.jsp | 20019 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Unvalidated-Redirect/Redirect-Detection-Evaluation-GET-302Redirect/Case06-Redirect-RedirectMethod-FilenameContext-Unrestricted-HttpURL-DefaultInvalidInput-PartialPathReq-Read.jsp | 20019 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Unvalidated-Redirect/Redirect-Detection-Evaluation-GET-302Redirect/Case07-Redirect-RedirectMethod-FilenameContext-Unrestricted-HttpURL-DefaultEmptyInput-PartialPathReq-Read.jsp | 20019 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Unvalidated-Redirect/Redirect-Detection-Evaluation-GET-302Redirect/Case08-Redirect-RedirectMethod-FilenameContext-HttpInputValidation-HttpURL-DefaultPartialInput-PartialPathReq-Read.jsp | 20019 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Unvalidated-Redirect/Redirect-Detection-Evaluation-GET-302Redirect/Case09-Redirect-RedirectMethod-FilenameContext-HttpInputValidation-HttpURL-DefaultRelativeInput-AnyPathReq-Read.jsp | 20019 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Unvalidated-Redirect/Redirect-Detection-Evaluation-GET-302Redirect/Case10-Redirect-RedirectMethod-FilenameContext-HttpInputValidation-HttpURL-DefaultInvalidInput-AnyPathReq-Read.jsp | 20019 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Unvalidated-Redirect/Redirect-Detection-Evaluation-GET-302Redirect/Case11-Redirect-RedirectMethod-FilenameContext-HttpInputValidation-HttpURL-DefaultEmptyInput-AnyPathReq-Read.jsp | 20019 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Unvalidated-Redirect/Redirect-Detection-Evaluation-GET-302Redirect/Case12-Redirect-RedirectMethod-FilenameContext-HttpInputRemoval-HttpURL-DefaultPartialInput-PartialPathReq-Read.jsp | 20019 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Unvalidated-Redirect/Redirect-Detection-Evaluation-GET-302Redirect/Case13-Redirect-RedirectMethod-FilenameContext-HttpInputRemoval-HttpURL-DefaultRelativeInput-AnyPathReq-Read.jsp | 20019 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Unvalidated-Redirect/Redirect-Detection-Evaluation-GET-302Redirect/Case14-Redirect-RedirectMethod-FilenameContext-HttpInputRemoval-HttpURL-DefaultInvalidInput-AnyPathReq-Read.jsp | 20019 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Unvalidated-Redirect/Redirect-Detection-Evaluation-GET-302Redirect/Case15-Redirect-RedirectMethod-FilenameContext-HttpInputRemoval-HttpURL-DefaultEmptyInput-AnyPathReq-Read.jsp | 20019 | ✓ Pass |
|
Unvalidated Redirect GET False Positives |
78% |
||
| Individual Tests | Rule | Pass | Fail |
| Top Level: /Redirect-FalsePositives-GET/ | 7 | 2 | |
| http://127.0.0.1:8080/wavsep/active/Unvalidated-Redirect/Redirect-FalsePositives-GET/Case01-Redirect-FalsePositive-Forward-TextHtmlValidResponse-FilenameContext-Unrestricted-OSPath-DefaultRelativeInput-NoPathReq-Read.jsp | ✓ Pass |
||
| http://127.0.0.1:8080/wavsep/active/Unvalidated-Redirect/Redirect-FalsePositives-GET/Case02-Redirect-FalsePositive-NoLogic-TextHtmlValidResponse-NoContext-Unrestricted-NoPath-DefaultFullInput-NoPathReq-Read.jsp | ✓ Pass |
||
| http://127.0.0.1:8080/wavsep/active/Unvalidated-Redirect/Redirect-FalsePositives-GET/Case03-Redirect-FalsePositive-NoLogic-TextHtmlValidResponse-NoContext-Unrestricted-NoPath-DefaultRelativeInput-NoPathReq-Read.jsp | ✓ Pass |
||
| http://127.0.0.1:8080/wavsep/active/Unvalidated-Redirect/Redirect-FalsePositives-GET/Case04-Redirect-FalsePositive-NoLogic-TextHtmlValidResponse-NoContext-Unrestricted-NoPath-DefaultPartialInput-NoPathReq-Read.jsp | ✓ Pass |
||
| http://127.0.0.1:8080/wavsep/active/Unvalidated-Redirect/Redirect-FalsePositives-GET/Case05-Redirect-FalsePositive-InactiveJavascriptRedirect-FilenameContext-InputValidation-HttpURL-DefaultFullInput-AnyPathReq-Read.jsp | 20019 | ❌ FAIL |
|
| http://127.0.0.1:8080/wavsep/active/Unvalidated-Redirect/Redirect-FalsePositives-GET/Case06-Redirect-FalsePositive-RFI-TextHtmlValidResponse-FilenameContext-Unrestricted-OSPath-DefaultFullInput-NoPathReq-Read.jsp | ✓ Pass |
||
| http://127.0.0.1:8080/wavsep/active/Unvalidated-Redirect/Redirect-FalsePositives-GET/Case07-Redirect-FalsePositive-LFI-TextHtmlValidResponse-FilenameContext-Unrestricted-OSPath-DefaultRelativeInput-NoPathReq-Read.jsp | ✓ Pass |
||
| http://127.0.0.1:8080/wavsep/active/Unvalidated-Redirect/Redirect-FalsePositives-GET/Case08-Redirect-FalsePositive-RedirectMethod-FilenameContext-WhiteList-HttpURL-DefaultFullInput-AnyPathReq-Read.jsp | ✓ Pass |
||
| http://127.0.0.1:8080/wavsep/active/Unvalidated-Redirect/Redirect-FalsePositives-GET/Case09-Redirect-FalsePositive-RedirectMethod-FilenameContext-DomainConcat-HttpURL-DefaultFullInput-AnyPathReq-Read.jsp | 20019 | ❌ FAIL |
|
Unvalidated Redirect POST 200 Valid |
100% |
||
| Individual Tests | Rule | Pass | Fail |
| Top Level: /Redirect-JavaScript-Detection-Evaluation-POST-200Valid/ | 15 | 0 | |
| http://127.0.0.1:8080/wavsep/active/Unvalidated-Redirect/Redirect-JavaScript-Detection-Evaluation-POST-200Valid/Case01-Redirect-RedirectMethod-FilenameContext-Unrestricted-HttpURL-DefaultFullInput-AnyPathReq-Read.jsp | 20019 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Unvalidated-Redirect/Redirect-JavaScript-Detection-Evaluation-POST-200Valid/Case02-Redirect-RedirectMethod-FilenameContext-Unrestricted-HttpURL-DefaultRelativeInput-AnyPathReq-Read.jsp | 20019 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Unvalidated-Redirect/Redirect-JavaScript-Detection-Evaluation-POST-200Valid/Case03-Redirect-RedirectMethod-FilenameContext-Unrestricted-HttpURL-DefaultInvalidInput-AnyPathReq-Read.jsp | 20019 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Unvalidated-Redirect/Redirect-JavaScript-Detection-Evaluation-POST-200Valid/Case04-Redirect-RedirectMethod-FilenameContext-Unrestricted-HttpURL-DefaultEmptyInput-AnyPathReq-Read.jsp | 20019 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Unvalidated-Redirect/Redirect-JavaScript-Detection-Evaluation-POST-200Valid/Case05-Redirect-RedirectMethod-FilenameContext-Unrestricted-HttpURL-DefaultPartialInput-PartialPathReq-Read.jsp | 20019 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Unvalidated-Redirect/Redirect-JavaScript-Detection-Evaluation-POST-200Valid/Case06-Redirect-RedirectMethod-FilenameContext-Unrestricted-HttpURL-DefaultInvalidInput-PartialPathReq-Read.jsp | 20019 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Unvalidated-Redirect/Redirect-JavaScript-Detection-Evaluation-POST-200Valid/Case07-Redirect-RedirectMethod-FilenameContext-Unrestricted-HttpURL-DefaultEmptyInput-PartialPathReq-Read.jsp | 20019 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Unvalidated-Redirect/Redirect-JavaScript-Detection-Evaluation-POST-200Valid/Case08-Redirect-RedirectMethod-FilenameContext-HttpInputValidation-HttpURL-DefaultPartialInput-PartialPathReq-Read.jsp | 20019 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Unvalidated-Redirect/Redirect-JavaScript-Detection-Evaluation-POST-200Valid/Case09-Redirect-RedirectMethod-FilenameContext-HttpInputValidation-HttpURL-DefaultRelativeInput-AnyPathReq-Read.jsp | 20019 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Unvalidated-Redirect/Redirect-JavaScript-Detection-Evaluation-POST-200Valid/Case10-Redirect-RedirectMethod-FilenameContext-HttpInputValidation-HttpURL-DefaultInvalidInput-AnyPathReq-Read.jsp | 20019 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Unvalidated-Redirect/Redirect-JavaScript-Detection-Evaluation-POST-200Valid/Case11-Redirect-RedirectMethod-FilenameContext-HttpInputValidation-HttpURL-DefaultEmptyInput-AnyPathReq-Read.jsp | 20019 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Unvalidated-Redirect/Redirect-JavaScript-Detection-Evaluation-POST-200Valid/Case12-Redirect-RedirectMethod-FilenameContext-HttpInputRemoval-HttpURL-DefaultPartialInput-PartialPathReq-Read.jsp | 20019 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Unvalidated-Redirect/Redirect-JavaScript-Detection-Evaluation-POST-200Valid/Case13-Redirect-RedirectMethod-FilenameContext-HttpInputRemoval-HttpURL-DefaultRelativeInput-AnyPathReq-Read.jsp | 20019 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Unvalidated-Redirect/Redirect-JavaScript-Detection-Evaluation-POST-200Valid/Case14-Redirect-RedirectMethod-FilenameContext-HttpInputRemoval-HttpURL-DefaultInvalidInput-AnyPathReq-Read.jsp | 20019 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Unvalidated-Redirect/Redirect-JavaScript-Detection-Evaluation-POST-200Valid/Case15-Redirect-RedirectMethod-FilenameContext-HttpInputRemoval-HttpURL-DefaultEmptyInput-AnyPathReq-Read.jsp | 20019 | ✓ Pass |
|
Unvalidated Redirect POST 302 |
100% |
||
| Individual Tests | Rule | Pass | Fail |
| Top Level: /Redirect-Detection-Evaluation-POST-302Redirect/ | 15 | 0 | |
| http://127.0.0.1:8080/wavsep/active/Unvalidated-Redirect/Redirect-Detection-Evaluation-POST-302Redirect/Case01-Redirect-RedirectMethod-FilenameContext-Unrestricted-HttpURL-DefaultFullInput-AnyPathReq-Read.jsp | 20019 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Unvalidated-Redirect/Redirect-Detection-Evaluation-POST-302Redirect/Case02-Redirect-RedirectMethod-FilenameContext-Unrestricted-HttpURL-DefaultRelativeInput-AnyPathReq-Read.jsp | 20019 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Unvalidated-Redirect/Redirect-Detection-Evaluation-POST-302Redirect/Case03-Redirect-RedirectMethod-FilenameContext-Unrestricted-HttpURL-DefaultInvalidInput-AnyPathReq-Read.jsp | 20019 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Unvalidated-Redirect/Redirect-Detection-Evaluation-POST-302Redirect/Case04-Redirect-RedirectMethod-FilenameContext-Unrestricted-HttpURL-DefaultEmptyInput-AnyPathReq-Read.jsp | 20019 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Unvalidated-Redirect/Redirect-Detection-Evaluation-POST-302Redirect/Case05-Redirect-RedirectMethod-FilenameContext-Unrestricted-HttpURL-DefaultPartialInput-PartialPathReq-Read.jsp | 20019 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Unvalidated-Redirect/Redirect-Detection-Evaluation-POST-302Redirect/Case06-Redirect-RedirectMethod-FilenameContext-Unrestricted-HttpURL-DefaultInvalidInput-PartialPathReq-Read.jsp | 20019 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Unvalidated-Redirect/Redirect-Detection-Evaluation-POST-302Redirect/Case07-Redirect-RedirectMethod-FilenameContext-Unrestricted-HttpURL-DefaultEmptyInput-PartialPathReq-Read.jsp | 20019 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Unvalidated-Redirect/Redirect-Detection-Evaluation-POST-302Redirect/Case08-Redirect-RedirectMethod-FilenameContext-HttpInputValidation-HttpURL-DefaultPartialInput-PartialPathReq-Read.jsp | 20019 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Unvalidated-Redirect/Redirect-Detection-Evaluation-POST-302Redirect/Case09-Redirect-RedirectMethod-FilenameContext-HttpInputValidation-HttpURL-DefaultRelativeInput-AnyPathReq-Read.jsp | 20019 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Unvalidated-Redirect/Redirect-Detection-Evaluation-POST-302Redirect/Case10-Redirect-RedirectMethod-FilenameContext-HttpInputValidation-HttpURL-DefaultInvalidInput-AnyPathReq-Read.jsp | 20019 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Unvalidated-Redirect/Redirect-Detection-Evaluation-POST-302Redirect/Case11-Redirect-RedirectMethod-FilenameContext-HttpInputValidation-HttpURL-DefaultEmptyInput-AnyPathReq-Read.jsp | 20019 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Unvalidated-Redirect/Redirect-Detection-Evaluation-POST-302Redirect/Case12-Redirect-RedirectMethod-FilenameContext-HttpInputRemoval-HttpURL-DefaultPartialInput-PartialPathReq-Read.jsp | 20019 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Unvalidated-Redirect/Redirect-Detection-Evaluation-POST-302Redirect/Case13-Redirect-RedirectMethod-FilenameContext-HttpInputRemoval-HttpURL-DefaultRelativeInput-AnyPathReq-Read.jsp | 20019 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Unvalidated-Redirect/Redirect-Detection-Evaluation-POST-302Redirect/Case14-Redirect-RedirectMethod-FilenameContext-HttpInputRemoval-HttpURL-DefaultInvalidInput-AnyPathReq-Read.jsp | 20019 | ✓ Pass |
|
| http://127.0.0.1:8080/wavsep/active/Unvalidated-Redirect/Redirect-Detection-Evaluation-POST-302Redirect/Case15-Redirect-RedirectMethod-FilenameContext-HttpInputRemoval-HttpURL-DefaultEmptyInput-AnyPathReq-Read.jsp | 20019 | ✓ Pass |
Configuration
| Config | Details |
|---|---|
| Frequency | Manual |
| Scripts | https://github.com/zapbot/zap-mgmt-scripts/blob/master/scans/wavsep |
| Action | https://github.com/zapbot/zap-mgmt-scripts/actions/workflows/zap-vs-wavsep.yml |
Settings
All of the relevant rules were run at HIGH strength, with the exception of Path Traversal which is run at insane.
However because we are excluding the Windows technology, the Path Traversal rule actually makes the same number of requests that it would do at High with no technology excluded.