BEAR.Security

Security scanner for BEAR.Sunday applications.

English

日本語 (Press j for Japanese, e for English)

Issue Types

Injection

• SqlInjection - SQL injection vulnerability
• CommandInjection - Command injection vulnerability
• XSS - Cross-site scripting vulnerability
• HeaderInjection - HTTP header injection
• XXE - XML external entity injection

File & Path

• PathTraversal - Path traversal / local file inclusion
• RemoteFileInclusion - Remote file inclusion

Authentication & Session

• CSRF - Cross-site request forgery
• SessionSecurity - Session security issues
• OpenRedirect - Open redirect vulnerability

Cryptography

• CryptographicFailures - Weak cryptography
• WeakRandom - Weak random number generation

Other

• InsecureDeserialization - Insecure deserialization
• DangerousFunction - Use of dangerous functions