Web Pages With Inputs Node
Websites and applications have become increasingly interactive to allow for active user input. For example, they accept users’ inputs and comments, and allow them to become members. While this increases reciprocity between website and user, malicious hackers can misuse this interaction to attack websites and applications.
This is why injection attacks, such as SQL Injection, have begun to appear in the OWASP Top Ten. Attackers can use input points to load their malicious code, which is then executed within trusted content. It is important to know these input points and sanitize them as much as possible.
Acunetix 360 scans your web application and provides a list of form inputs found in the target application. This list can be used by developers and QA staff to carry out further manual testing. Security professionals find such information beneficial, since it provides them with a better overview of the possible attack surfaces in a web application.
Once the scan is completed, all web pages with inputs are listed under the Web Pages With Inputs node in the Knowledge Base. You can access the same information in the Knowledge Base Report and Knowledge Base Tab.
Acunetix 360 forms Knowledge Base nodes on its findings. If a Web Page With Inputs node is not listed, it means that Acunetix 360 did not find any.
For further information, see Knowledge Base Nodes.
How to View the Web Pages With Inputs Node in Acunetix 360
- Log in to Acunetix 360.
- From the main menu, click Scans, then Recent Scans. The Recent Scans window is displayed.
- Next to the relevant website, click Report.
- From the Technical Report section, click the Knowledge Base tab.
- Click the Web Pages With Inputs node. The information is displayed in a Web Pages With Inputs tab.