Track and manage security vulnerabilities across all your pentests.
Authentication bypass via JWT none-algorithm acceptance
Cryptographic operation uses MD5 for password reset tokens
Misconfigured CORS allows any origin with credentials
Sensitive endpoint reachable without authentication
Repository contains stale test fixtures with real customer data