New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Nikto import only shows a single host per vulnerability. #661
Comments
It only exists in the database for the single server, so it's not UI rendering, it is import into database that fails. |
It might seem like it is on purpose, I'm honestly having a hard time reading Perl code, but it seems like we might be aggregating vulnerabilities into a single finding. If this is the case, would it be possible to indicate that in the UI somehow? E.g. list multiple hostnames/ips per finding? |
yes, seems that it is a kind of side effect caused by CDN normalization. The port number is ignored. Is it bad? Should we change it? |
The cdn feature should only be there if —cdn is used on the command line iirc. |
Running a Nikto scan against multiple ports and servers, I've found a few issues.
IVIL (filtered for just 1 vulnerability)
NBE (filtered for just 1 vulnerability):
UI (filtered for just 1 vulnerability):
The text was updated successfully, but these errors were encountered: