Empty scan findings #2
Comments
|
Is the tested page actually vulnerable? You can connect to the API and retrieve the log information with: If there were results, you can check with: My guess is that the scan completed successfully but that there were no results. If that is the case, I need to update the code to not add anything to the Burp scan results tab if the results are empty. |
|
Yeah, I just confirmed, it is adding a result even if the results were empty. Will work on a fix. |
|
I believe this is fixed now. If you run a scan and the page is not vulnerable to SQL injection, then nothing will be added to the Burp scanner results tab. |
|
Just tested it, no more empty results present. Thanks! |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
The sqlmapapi reported:
[23:23:09] [DEBUG] [9fb2cdda8d37dd3e] Retrieved scan data and error messages
Burp extender output reported:
Scan for task 9fb2cdda8d37dd3e completed. Gathering results.
If the page was vulnerable, then findings for task 9fb2cdda8d37dd3e have been reported.
The text was updated successfully, but these errors were encountered: