SQL Injection flagged when 403 Forbidden
- Hi, I'm scanning a site with F-Secure Radar.
- It keep flagging SQL Injection High even though the response is: HTTP/1.1 403 Forbidden (our apps detect invalid input and response 403)
- Here is a video showing what I meant:
- We have two same apps in two different servers.
- However, only one of the server is having this issue.
- Is there something we set wrongly for the scan?
This discussion has been closed.