Report Title | Event ID | Severity | Vulnerability Type |
---|---|---|---|
Open URL Redirect on /drpanel/logout.php | FirstBlood v1 | Low | Open Redirect |
Stored XSS on /drpanel/drapi/query.php?aptid=<ID> | FirstBlood v1 | High | Stored XSS |
IDOR found on /api/ma.php | FirstBlood v1 | High | Insecure direct object reference |
Can change email when modifying an appointment | FirstBlood v1 | High | Application/Business Logic |