[DEPRECATED] Using Web Security Scanner to Find Vulnerabilities in an App Engine Application Reviews

Dennis Mutugi K. · Reviewed over 4 years ago

Necip T. · Reviewed over 4 years ago

Sumaiya T. · Reviewed over 4 years ago

Dami O. · Reviewed over 4 years ago

Lokesh M. · Reviewed over 4 years ago

Nicolae E. · Reviewed over 4 years ago

Dylan G. · Reviewed over 4 years ago

The suggested change to main.py in Task 4 breaks the app: import html html.escape(...) After that the POST requests return the error in the browser An internal error occurred: 500 Internal Server Error: The server encountered an internal error and was unable to complete your request. Either the server is overloaded or there is an error in the application. See logs for full stacktrace. Cloud logs for the App Engine app show the following stack trace: Exception on /books/add [POST] Traceback (most recent call last): File "/layers/google.python.pip/pip/lib/python3.7/site-packages/flask/app.py", line 2070, in wsgi_app response = self.full_dispatch_request() File "/layers/google.python.pip/pip/lib/python3.7/site-packages/flask/app.py", line 1515, in full_dispatch_request rv = self.handle_user_exception(e) File "/layers/google.python.pip/pip/lib/python3.7/site-packages/flask/app.py", line 1513, in full_dispatch_request rv = self.dispatch_request() File "/layers/google.python.pip/pip/lib/python3.7/site-packages/flask/app.py", line 1499, in dispatch_request return self.ensure_sync(self.view_functions[rule.endpoint])(**req.view_args) File "/srv/main.py", line 84, in add html.escape(...) File "/opt/python3.7/lib/python3.7/html/__init__.py", line 19, in escape s = s.replace("&", "&") # Must be done first! AttributeError: 'ellipsis' object has no attribute 'replace'"

Pavel M. · Reviewed over 4 years ago

Ong K. · Reviewed over 4 years ago

Mirza A. · Reviewed over 4 years ago

Vishwanath K. · Reviewed over 4 years ago

Very slow scanning, should have provided lighterweight app. Wrong url for the app given of https://<PROJECT_ID>.uc.r.appspot.com should be oa not uc.

Hon H. · Reviewed over 4 years ago

Chuck Y. · Reviewed over 4 years ago

Too slow

Fabio S. · Reviewed over 4 years ago

Diego, H. · Reviewed over 4 years ago

Philippe L. · Reviewed over 4 years ago

Firestoreの画面が手順と異なっていた。

s6-sakamoto S. · Reviewed over 4 years ago

Rodrigo Vinicius P. · Reviewed over 4 years ago

Poorly made. Vulnerabilities not found. Not easy way to stop and start from where we are. This one should be reworked.

Gavin S. · Reviewed over 4 years ago

Vít P. · Reviewed over 4 years ago

Naresh K. · Reviewed over 4 years ago

ok

Cristian E. · Reviewed over 4 years ago

Ronan S. · Reviewed over 4 years ago

Gene E. · Reviewed over 4 years ago