Security Test: Reflected URL Parameter¶

Scanner(s) Support¶

Description¶

Default Severity: info

A user input via a URL parameter is reflected in the page content. While not all reflected parameters are vulnerable, it is a good practice to validate and sanitize all user input.

Configuration¶

Identifier: frontend_injection/reflected_url_parameter

Examples¶

All configuration available:

checks:
  frontend_injection/reflected_url_parameter:
    skip: false # default

Compliance and Standards¶