ReportItem Component

Report item component can be used to issue vulnerability reports to the parent scan.

Creating a ReportItem:

From scripting you can create a variable of the type ReportItem by the following code:

var item = new TReportItem();

Usually after creating a ReportItem variable LoadFromFile is called to fill the report item with basic information instead of completing every field from the script manually. After completing all the information on a report item, it can be send to the scan using the AddReportItem global function.

Example:

if (IsPortOpen(23)){ var ri = new TReportItem(); ri.LoadFromFile("Telnet.xml"); ri.Affects = "Server"; ri.Details = "Possible that a telnet server is running on TCP port 23."; ri.AddReference("Wikipedia entry about telnet", "http://en.wikipedia.org/wiki/Telnet"); AddReportItem(ri); }

Properties:

property Affects
property AlertTags
property Description
property Details
property DetaliedInformation
property FullResponse
property Impact
property Name
property Recommendation
property Request
property Response
property Severity

Remark: All the properties have read and write access.

function AddReference(Name, URL)

With this function reference links can be added to a vulnerability. You can add references with the description on fixing the vulnerability or information on it.

Parameter list:

Name
String with the title of the reference.
URL
String with the location URL of the reference.

function ClearReferences()

Deletes all references from the report item.

function LoadFromFile(FileName)

Loads a vulnerability description from a VulnXML file.

Parameter list:

FileName
String value representing the name of the file.

The name of the file is actualy a relative path with the base directory <ApplicationDirectory>\Data\Scripts\XML\.

property Affects

String value representing the item that is affected by the vulnerability.

property AlertTags

Classification tag for the vulnerability as a string value. This value is used for classifying the vulnerabilities in compliance reports. A vulnerability can have one or more tags separated by semicolon. The possible values for tags are:

xss
sql_injection
file_inclusion
code_execution
xpath_injection
ldap_injection
crlf_injection
http_response_splitting
directory_traversal
source_code_disclosure
information_disclosure
url_redirection
configuration
xfs
session_fixation
error_handling
malware
sensitive_data_not_over_ssl
buffer_overflow
denial_of_service
abuse_of_functionality
arbitrary_file_creation
csrf

property Description

Short description of the vulnerability as a string value.

property Details

String value representing the details about how the vulnerability was tested.

property DetaliedInformation

String value representing the detailed description of the vulnerability can have.

property FullResponse

If there was a vulnerability discovered by a HTTP request in this property can be specified the response body received from the server as a string value.

property Impact

String value representing the description of the impact the vulnerability can have.

property Name

String value representing the name of the vulnerability.

property Recommendation

String value representing the recommendations for the vulnerability.

property Request

If there was a vulnerability discovered by a HTTP request in this property can be specified the request performed by the script as a string value.

property Response

If there was a vulnerability discovered by a HTTP request in this property can be specified the response headers received from the server as a string value.

property Severity

String value representing the severity of the reported vulnerability. It can have one of the following values:

Info
Low
Medium
High