How do I reproduce web vulnerabilities?
This article describes how to find the request information needed to reproduce a web vulnerability by sending an HTTP request from a REST client.
When a web vulnerability is detected, Security Center stores the exact request and result used to identify it. You can use this information to recreate the same request in your own REST client.
Find the request information
- Log in to Security Center.
- Click Web app scan > Assessments in the main menu.
- Click All vulnerabilities.
- Select the web vulnerability you want to investigate. A web vulnerability is identified in the list by an icon shaped like a globe.
- Click Assets.
- Under General, find the request and result information.
Find the request body
You can also find the associated request body on the separate Body tab of the result.