Details
Alert ID 10032-6
Alert Type Passive
Status release
Risk Informational
CWE 642
WASC 14
Technologies Targeted All
Tags CWE-642
OWASP_2017_A06
OWASP_2021_A04
More Info Scan Rule Help

Summary

This website uses ASP.NET’s Viewstate and its value is split into several chunks.

Solution

None - the guys running the server may have tuned the configuration as this isn't the default setting.

Other Info

References

Code

org/zaproxy/zap/extension/pscanrules/ViewstateScanRule.java