Mobile App DAST Report - May 2024

This report holds the results of the Mobile application DAST Scanning performed on The uKnowva HRMS Mobile application module by the SecIQ security team from 24-May-2024 to 28-May-2024. The details about each task and our findings have been consolidated for this Executive Summary, and additional information is contained within the Detailed Vulnerability Information section of this report.

 

Objective

The objective of this assignment was to perform controlled attack and penetration activities to assess the overall level of security of the uKnowva web application – with the intent to

  1. Uncover any security issues in the given application.
  2. Explain the impact and risks associated with the found issues.
  3. Provide guidance to the team in the prioritization and remediation steps.

2.Executive Summary :

 

Business-Critical Risks:

  • The uKnowva HRMS Mobile Application had previously identified business risks, which have now been fully resolved.
  • These included a Reflected Cross-Site Scripting (XSS) vulnerability and a vulnerability that allowed malicious file uploads.
  • All identified vulnerabilities have been successfully mitigated and closed.

3.Findings Summary:

 

 

 


VAPT Certificate


 
 
In case you face any problems, then please write to This email address is being protected from spambots. You need JavaScript enabled to view it., our awesome support team will surely help you!
Was this Article helpful?