VAPT Report - September 2024

This is to certify that SecIQ Technologies has performed Vulnerability Assessment and Penetration Testing (VAPT) from 14-June-2024 to 18-September-2024 for the Uknowva HRMS web application.


Executive Summary


 

Business-Critical Risks:

 

The Uknowva’s Web Application was identified to have some business risks, which are listed below:

  • ● It was observed that SQL Injection that allows to dump database information.

    ● It was observed that the Broken Access control issue allows unauthorized users gaining access to sensitive information.

 

The above application was tested for compliance with OWASP security guidelines, & the following Critical/High/Medium/Low issues identified as part of the assessment report have been fixed and verified as part of the retesting, Some are accepted risks . Please refer to the table below:

 


VAPT Certificate


 
In case you face any problems, then please write to helpdesk@uknowva.com, our awesome support team will surely help you!
Was this Article helpful?