Viewing and Managing Findings

Analyze security vulnerabilities from your scans and manage remediation.

Results Dashboard

Once a scan completes, access the results:

1. Click on the completed scan from the DAST Scans list

2. View the Results Dashboard with:

   Summary Overview

   • Total findings count
   • Breakdown by severity (Critical, High, Medium, Low, Info)
   • Risk score and trend comparison
   • Compliance status

Findings List

The detailed findings table shows:

• Severity Badge: Color-coded priority indicator
• Vulnerability Type: CWE/OWASP category (e.g., SQL Injection, XSS)
• Affected Endpoint: URL and HTTP method
• Status: New, Acknowledged, Resolved, False Positive

Vulnerability Details

Click any finding to see:

Description

• What the vulnerability is
• Why it's a security risk
• Potential impact on your application

Technical Details

• Affected parameter or component
• HTTP request/response demonstrating the issue
• Proof of concept payload

Remediation Guidance

• Code examples and best practices
• References to OWASP, CWE, and CVE databases

Filtering and Search

Using Filters

Use the filter panel to narrow results:

• Severity: Show only Critical or High
• Type: Specific vulnerability categories

Exporting Findings

From the findings list, you can:

• Export to JSON: For integration with other tools
• Generate PDF or DOCX: For sharing with stakeholders

See Exporting Results and Reports for more details.

Integration with Issue Tracking

Findings can be automatically linked to your issue tracker:

• Create tickets directly from vulnerabilities
• Sync status bidirectionally (finding → ticket and vice versa)
• Track remediation through the development workflow
• Close findings when related ticket is resolved

Next Steps

• Export Results and Reports - Share findings with stakeholders
• Scheduling Scans - Set up continuous monitoring