This is to certify that SecIQ Technologies has performed Vulnerability Assessment and Penetration Testing (VAPT) from 14-June-2024 to 18-September-2024 for the Uknowva HRMS web application.
Executive Summary
Business-Critical Risks:
The Uknowva’s Web Application was identified to have some business risks, which are listed below:
-
● It was observed that SQL Injection that allows to dump database information.
● It was observed that the Broken Access control issue allows unauthorized users gaining access to sensitive information.
The above application was tested for compliance with OWASP security guidelines, & the following Critical/High/Medium/Low issues identified as part of the assessment report have been fixed and verified as part of the retesting, Some are accepted risks . Please refer to the table below:
VAPT Certificate
