Merge pull request #2766 from zapbot/update-alerts

Update alert pages
zaproxy · Aug 16, 2024 · 2f7badb · 2f7badb
2 parents d3aa5c8 + 3d3e281
commit 2f7badb
Show file tree

Hide file tree

Showing 3 changed files with 6 additions and 1 deletion.
diff --git a/site/content/docs/alerts/90025.md b/site/content/docs/alerts/90025.md
@@ -15,6 +15,7 @@ other: ""
 cwe: 917
 wasc: 20
 alerttags: 
+  - CWE-917
   - OWASP_2017_A01
   - OWASP_2021_A03
   - WSTG-v42-INPV-11

diff --git a/site/content/docs/alerts/90027.md b/site/content/docs/alerts/90027.md
@@ -10,10 +10,11 @@ risk: Informational
 solution: ""
 references:
    - https://cwe.mitre.org/data/definitions/205.html
-other: ""
+other: "Cookies that don't have expected effects can reveal flaws in application logic. In the worst case, this can reveal where authentication via cookie token(s) is not actually enforced. These cookies affected the response: oops These cookies did NOT affect the response: bar,foo "
 cwe: 205
 wasc: 45
 alerttags: 
+  - CWE-205
   - OWASP_2017_A06
   - OWASP_2021_A05
   - WSTG-v42-SESS-02

diff --git a/site/data/alerttags.yml b/site/data/alerttags.yml
@@ -175,6 +175,9 @@ CWE-79:
 CWE-829:
   link: https://cwe.mitre.org/data/definitions/829.html
 
+CWE-917:
+  link: https://cwe.mitre.org/data/definitions/917.html
+
 CWE-918:
   link: https://cwe.mitre.org/data/definitions/918.html