Google Code Archive - Long-term storage for Google Code Project Hosting.

ID	Status	Summary
1661	`Invalid`	ZAP Slow response Type-Defect Priority-Medium
1660	`Invalid`	Cookie parsing within Zest Scripts does not work as expected Type-Defect Priority-Medium
1659	`Invalid`	Threadfix option export/import missing from Tools menu option Type-Defect Priority-Medium
1658	`New`	DO NOT RAISE ISSUES HERE - ZAP has been migrated to https://github.com/zaproxy/zaproxy/issues Type-Enhancement Priority-Medium
1657	`Invalid`	ar Type-Defect Priority-Medium
1656	`Invalid`	ZAP Proxy fails to load external JS (502 Bad Gateway ) ZAP Error [java.net.ConnectException]: Operation timed out Type-Defect Priority-Medium
1655	`Done`	Copy Session Token from Http Sessions tab to clipboard Type-Enhancement Priority-Medium
1654	`Done`	httpSessions/createEmptySession should initialize a site that was not previously visited Type-Defect Priority-Medium
1653	`Done`	Support context menu key for trees Type-Enhancement Priority-Medium
1652	`Done`	Blind SQL numeric injection false positive results Type-Defect Priority-Medium
1651	`Done`	Please add a confermation before closing ZAP. Type-Enhancement Priority-Medium
1650	`Done`	It takes 2 hours to load a previous ZAP session. Type-Defect Priority-Medium
1649	`Done`	Nothing works after update Type-Defect Priority-Medium
1648	`Done`	target.tld:port/path not possible Type-Defect Priority-Medium
1647	`Done`	Wrong reference in Zest Result Type-Defect Priority-Medium
1646	`Done`	Active-Scanning current request Type-Enhancement Priority-Medium
1645	`Done`	Auto-Encode Type-Enhancement Priority-Medium
1644	`Done`	Headers tab Type-Enhancement Priority-Medium
1643	`Done`	Insert urls into site tree via API Type-Enhancement Priority-Medium
1642	`Done`	Change of view type in Break tab not saved when ZAP closed/reopened. Type-Enhancement Priority-Medium
1641	`Done`	XSS False Positive on injections into script block (Webseclab /xss/reflect/js3_fp?in=) Type-Defect Priority-Medium
1640	`Done`	XSS False Negative on double-encoded script injections Type-Defect Priority-Medium
1639	`Done`	XSS False Negative on script injections into the Referer HTTP header Type-Defect Priority-Medium
1638	`Done`	Accept external connections Type-Defect Priority-Medium
1637	`Done`	Spider with included credential in NTLM/Kerberos Type-Defect Priority-Medium
1636	`Done`	Users (for auth) & Forced User not loaded from session Type-Defect Priority-Medium
1635	`Done`	Overwork the tab concept and introduce a real request history Type-Enhancement Priority-Medium
1634	`Done`	Export URLs of specific contexts and sites Type-Enhancement Priority-Medium
1633	`Invalid`	ZAP not working when using proxy Type-Defect Priority-Medium
1632	`Done`	False Negative XSS on injection outside of HTML tags Type-Defect Priority-Medium
1631	`Duplicate`	Moving to Github? Type-Enhancement Priority-Medium
1630	`Done`	Write SSLKEYLOGFILE as firefox/chrome in order to be able to decrypt SSL/TLS pcap files towards servers Type-Enhancement Priority-Medium
1629	`Done`	Missing add-on files in marketplace Type-Task Priority-Medium
1628	`Duplicate`	SQL injection should be excluded/skipped in Active scan when Technology/Db is unchecked Type-Defect Priority-Medium
1627	`Done`	Display available AJAX Spider entries if persisted session is loaded Type-Enhancement Priority-Medium
1626	`Done`	Structural parameters not saved when context exported and not available via the API Type-Defect Priority-Medium
1625	`Done`	Support multiple structural params and ones on top level nodes Type-Enhancement Priority-Medium
1624	`Done`	Error while loading ZAP 2.4.0 Type-Defect Priority-Medium
1623	`Done`	Unable to check for updates Type-Defect Priority-Medium
1622	`Done`	Latest trunk "dist" target does not build Type-Task Priority-Medium
1621	`Done`	AScan API - Allow to scan as an user Type-Enhancement Priority-Medium
1620	`Done`	Add endpoint to get number of alerts grouped by risk level Type-Enhancement Priority-Medium
1619	`Done`	Search regex might not be validated Type-Defect Priority-Medium
1618	`Done`	Target Technology Not Honored Type-Defect Priority-Medium
1617	`Done`	ZAP 2.4.0 throws HeadlessExceptions when running in daemon mode on headless machine Type-Defect Priority-Medium
1616	`Done`	Freeze when call newSession during a scan Type-Defect Priority-Medium
1615	`Done`	Search "All" option not working Type-Defect Priority-Medium
1614	`Invalid`	Authentication doesn't work Type-Defect Priority-Medium
1613	`Done`	HTTPS will not proxy via ZAP 2.4 Type-Defect Priority-Medium
1612	`Done`	NullPointerException while generating PDF/ODT report Type-Defect Priority-Medium
1611	`Done`	net.continuumsecurity.proxy.ZAProxyScanner clear() method implementation broken Type-Defect Priority-Medium
1610	`Duplicate`	Add complete request and response details in alert report Type-Enhancement Priority-Medium
1609	`Done`	Alerts Report - Include Relevant Request and Response Details Type-Enhancement Priority-Medium
1608	`Invalid`	Can't update passive scan rules via command line Type-Defect Priority-Medium
1607	`Done`	Unable to save the test session via API Type-Defect Priority-Medium
1606	`Fixed`	PDF/ODT report generation not working Type-Defect Priority-Medium
1605	`Done`	Update status from Alpha -> Beta Type-Review
1604	`Done`	Import policy file via API Type-Enhancement Priority-Medium
1603	`Done`	Bulk change alert confidence Type-Enhancement Priority-Medium
1602	`Done`	Apps Scan for SharePoint 2013 Web Application with NTLM Authentication Type-Defect Priority-Medium
1601	`Done`	Create Scanner for MS15-034 Type-Enhancement Priority-Low
1600	`Done`	Dont report X-Frame-Options alert on 403 and 404 pages Type-Enhancement Priority-Medium
1599	`Done`	Scanning a site fails Type-Defect Priority-Medium
1598	`Done`	startup script lacks support for FreeBSD Type-Defect Priority-Medium
1597	`Done`	Java 8 Type-Defect Priority-Medium
1596	`Invalid`	macosx format change Type-Defect Priority-Medium
1595	`Invalid`	owasp-zap does not launch on Kali 1.1.0a VMWare VM due to architecture detection logic Type-Defect Priority-Medium
1594	`Done`	TestInfoSessionIdURL - Referer expose session ID - False Positive Type-Defect Priority-Medium FalsePositive
1593	`Done`	Auto-scroll contents Type-Enhancement Priority-Medium Usability
1592	`Fixed`	CommandInjectionPlugin timing false positives Type-Enhancement Priority-Medium
1591	`Done`	Build of trunk is failing from Ubuntu 14 LTS with ant 1.9.3 Type-Defect Priority-Medium
1590	`Done`	Mode to apply when running as a daemon Type-Enhancement Priority-Medium
1589	`Duplicate`	API htmlReport() method is not producing a html report Type-Defect Priority-Critical
1588	`Invalid`	Integration with Jenkins Type-Enhancement Priority-Medium
1587	`WontFix`	Integration with CheckMarx Type-Enhancement Priority-Medium
1586	`Fixed`	Alerts are not returned when invoked thru API Type-Defect Priority-Critical
1585	`Duplicate`	Integration with CheckMarx Type-Enhancement Priority-Medium
1584	`Done`	GZip de-compression causes loss of newlines Type-Defect Priority-Medium
1583	`Done`	Support "Display GZipped Content" option (or "Display Compressed Content"?) Type-Enhancement Priority-Medium
1582	`Done`	Low memory option Type-Enhancement Priority-Medium
1581	`Duplicate`	ZAP do not generate Report in HTML ou XML Type-Defect Priority-Medium
1580	`Done`	Evaluate and hopefully adopt Vulndb Type-Enhancement Priority-Medium
1579	`Done`	Support 'pre defined' applications to invoke Type-Enhancement Priority-Medium
1578	`Done`	Breakpoint setting in 2.4 Type-Defect Priority-Medium
1577	`Done`	API call to change alert properties Type-Enhancement Priority-Medium
1576	`Done`	Define URL path elements as 'non structural' Type-Enhancement Priority-Medium
1575	`Invalid`	Can not install ZAP on windows 7 64bit Type-Defect Priority-Medium
1574	`Done`	ZAP shows up an error Type-Defect Priority-Medium
1573	`Done`	Add option to inject plugin ID in header for all ascan requests Type-Enhancement Priority-Medium IdealFirstBug
1572	`Done`	WebSockets interception (break point) cannot be disabled Type-Defect Priority-Medium
1571	`Done`	Diffs contain superfluous "<br>" tags. Type-Defect Priority-Medium
1570	`Done`	ZAP -> Quit (⌘Q) does not properly exit on OS X Type-Defect Priority-Medium
1569	`Fixed`	TestExternalRedirect Plugin ID issue Type-Defect Priority-Low Maintainability
1568	`Invalid`	ZAP headless execution Type-Enhancement Priority-Medium
1567	`Done`	Suggestion to add HTTP method fields to reports Type-Enhancement Priority-Medium
1566	`Done`	Improve active scan's reported progress Type-Enhancement Priority-Medium
1565	`Done`	Offer Java-less OS X .app bundle Type-Enhancement Priority-Medium
1564	`Done`	Active Scan gets stuck Type-Defect Priority-Medium
1563	`Invalid`	Active Scanning doesn't work properly under the ATTACK mode in 2.4 Type-Defect Priority-Medium
1562	`Fixed`	Options/Database dialog in 2.4 Type-Defect Priority-Medium

1661

Invalid

ZAP Slow response Type-Defect Priority-Medium

1660

Invalid

Cookie parsing within Zest Scripts does not work as expected Type-Defect Priority-Medium

1659

Invalid

Threadfix option export/import missing from Tools menu option Type-Defect Priority-Medium

1658

New

DO NOT RAISE ISSUES HERE - ZAP has been migrated to https://github.com/zaproxy/zaproxy/issues Type-Enhancement Priority-Medium

1657

Invalid

ar Type-Defect Priority-Medium

1656

Invalid

ZAP Proxy fails to load external JS (502 Bad Gateway ) ZAP Error [java.net.ConnectException]: Operation timed out Type-Defect Priority-Medium

1655

Done

Copy Session Token from Http Sessions tab to clipboard Type-Enhancement Priority-Medium

1654

Done

httpSessions/createEmptySession should initialize a site that was not previously visited Type-Defect Priority-Medium

1653

Done

Support context menu key for trees Type-Enhancement Priority-Medium

1652

Done

Blind SQL numeric injection false positive results Type-Defect Priority-Medium

1651

Done

Please add a confermation before closing ZAP. Type-Enhancement Priority-Medium

1650

Done

It takes 2 hours to load a previous ZAP session. Type-Defect Priority-Medium

1649

Done

Nothing works after update Type-Defect Priority-Medium

1648

Done

target.tld:port/path not possible Type-Defect Priority-Medium

1647

Done

Wrong reference in Zest Result Type-Defect Priority-Medium

1646

Done

Active-Scanning current request Type-Enhancement Priority-Medium

1645

Done

Auto-Encode Type-Enhancement Priority-Medium

1644

Done

Headers tab Type-Enhancement Priority-Medium

1643

Done

Insert urls into site tree via API Type-Enhancement Priority-Medium

1642

Done

Change of view type in Break tab not saved when ZAP closed/reopened. Type-Enhancement Priority-Medium

1641

Done

XSS False Positive on injections into script block (Webseclab /xss/reflect/js3_fp?in=) Type-Defect Priority-Medium

1640

Done

XSS False Negative on double-encoded script injections Type-Defect Priority-Medium

1639

Done

XSS False Negative on script injections into the Referer HTTP header Type-Defect Priority-Medium

1638

Done

Accept external connections Type-Defect Priority-Medium

1637

Done

Spider with included credential in NTLM/Kerberos Type-Defect Priority-Medium

1636

Done

Users (for auth) & Forced User not loaded from session Type-Defect Priority-Medium

1635

Done

Overwork the tab concept and introduce a real request history Type-Enhancement Priority-Medium

1634

Done

Export URLs of specific contexts and sites Type-Enhancement Priority-Medium

1633

Invalid

ZAP not working when using proxy Type-Defect Priority-Medium

1632

Done

False Negative XSS on injection outside of HTML tags Type-Defect Priority-Medium

1631

Duplicate

Moving to Github? Type-Enhancement Priority-Medium

1630

Done

Write SSLKEYLOGFILE as firefox/chrome in order to be able to decrypt SSL/TLS pcap files towards servers Type-Enhancement Priority-Medium

1629

Done

Missing add-on files in marketplace Type-Task Priority-Medium

1628

Duplicate

SQL injection should be excluded/skipped in Active scan when Technology/Db is unchecked Type-Defect Priority-Medium

1627

Done

Display available AJAX Spider entries if persisted session is loaded Type-Enhancement Priority-Medium

1626

Done

Structural parameters not saved when context exported and not available via the API Type-Defect Priority-Medium

1625

Done

Support multiple structural params and ones on top level nodes Type-Enhancement Priority-Medium

1624

Done

Error while loading ZAP 2.4.0 Type-Defect Priority-Medium

1623

Done

Unable to check for updates Type-Defect Priority-Medium

1622

Done

Latest trunk "dist" target does not build Type-Task Priority-Medium

1621

Done

AScan API - Allow to scan as an user Type-Enhancement Priority-Medium

1620

Done

Add endpoint to get number of alerts grouped by risk level Type-Enhancement Priority-Medium

1619

Done

Search regex might not be validated Type-Defect Priority-Medium

1618

Done

Target Technology Not Honored Type-Defect Priority-Medium

1617

Done

ZAP 2.4.0 throws HeadlessExceptions when running in daemon mode on headless machine Type-Defect Priority-Medium

1616

Done

Freeze when call newSession during a scan Type-Defect Priority-Medium

1615

Done

Search "All" option not working Type-Defect Priority-Medium

1614

Invalid

Authentication doesn't work Type-Defect Priority-Medium

1613

Done

HTTPS will not proxy via ZAP 2.4 Type-Defect Priority-Medium

1612

Done

NullPointerException while generating PDF/ODT report Type-Defect Priority-Medium

1611

Done

net.continuumsecurity.proxy.ZAProxyScanner clear() method implementation broken Type-Defect Priority-Medium

1610

Duplicate

Add complete request and response details in alert report Type-Enhancement Priority-Medium

1609

Done

Alerts Report - Include Relevant Request and Response Details Type-Enhancement Priority-Medium

1608

Invalid

Can't update passive scan rules via command line Type-Defect Priority-Medium

1607

Done

Unable to save the test session via API Type-Defect Priority-Medium

1606

Fixed

PDF/ODT report generation not working Type-Defect Priority-Medium

1605

Done

Update status from Alpha -> Beta Type-Review

1604

Done

Import policy file via API Type-Enhancement Priority-Medium

1603

Done

Bulk change alert confidence Type-Enhancement Priority-Medium

1602

Done

Apps Scan for SharePoint 2013 Web Application with NTLM Authentication Type-Defect Priority-Medium

1601

Done

Create Scanner for MS15-034 Type-Enhancement Priority-Low

1600

Done

Dont report X-Frame-Options alert on 403 and 404 pages Type-Enhancement Priority-Medium

1599

Done

Scanning a site fails Type-Defect Priority-Medium

1598

Done

startup script lacks support for FreeBSD Type-Defect Priority-Medium

1597

Done

Java 8 Type-Defect Priority-Medium

1596

Invalid

macosx format change Type-Defect Priority-Medium

1595

Invalid

owasp-zap does not launch on Kali 1.1.0a VMWare VM due to architecture detection logic Type-Defect Priority-Medium

1594

Done

TestInfoSessionIdURL - Referer expose session ID - False Positive Type-Defect Priority-Medium FalsePositive

1593

Done

Auto-scroll contents Type-Enhancement Priority-Medium Usability

1592

Fixed

CommandInjectionPlugin timing false positives Type-Enhancement Priority-Medium

1591

Done

Build of trunk is failing from Ubuntu 14 LTS with ant 1.9.3 Type-Defect Priority-Medium

1590

Done

Mode to apply when running as a daemon Type-Enhancement Priority-Medium

1589

Duplicate

API htmlReport() method is not producing a html report Type-Defect Priority-Critical

1588

Invalid

Integration with Jenkins Type-Enhancement Priority-Medium

1587

WontFix

Integration with CheckMarx Type-Enhancement Priority-Medium

1586

Fixed

Alerts are not returned when invoked thru API Type-Defect Priority-Critical

1585

Duplicate

Integration with CheckMarx Type-Enhancement Priority-Medium

1584

Done

GZip de-compression causes loss of newlines Type-Defect Priority-Medium

1583

Done

Support "Display GZipped Content" option (or "Display Compressed Content"?) Type-Enhancement Priority-Medium

1582

Done

Low memory option Type-Enhancement Priority-Medium

1581

Duplicate

ZAP do not generate Report in HTML ou XML Type-Defect Priority-Medium

1580

Done

Evaluate and hopefully adopt Vulndb Type-Enhancement Priority-Medium

1579

Done

Support 'pre defined' applications to invoke Type-Enhancement Priority-Medium

1578

Done

Breakpoint setting in 2.4 Type-Defect Priority-Medium

1577

Done

API call to change alert properties Type-Enhancement Priority-Medium

1576

Done

Define URL path elements as 'non structural' Type-Enhancement Priority-Medium

1575

Invalid

Can not install ZAP on windows 7 64bit Type-Defect Priority-Medium

1574

Done

ZAP shows up an error Type-Defect Priority-Medium

1573

Done

Add option to inject plugin ID in header for all ascan requests Type-Enhancement Priority-Medium IdealFirstBug

1572

Done

WebSockets interception (break point) cannot be disabled Type-Defect Priority-Medium

1571

Done

Diffs contain superfluous "<br>" tags. Type-Defect Priority-Medium

1570

Done

ZAP -> Quit (⌘Q) does not properly exit on OS X Type-Defect Priority-Medium

1569

Fixed

TestExternalRedirect Plugin ID issue Type-Defect Priority-Low Maintainability

1568

Invalid

ZAP headless execution Type-Enhancement Priority-Medium

1567

Done

Suggestion to add HTTP method fields to reports Type-Enhancement Priority-Medium

1566

Done

Improve active scan's reported progress Type-Enhancement Priority-Medium

1565

Done

Offer Java-less OS X .app bundle Type-Enhancement Priority-Medium

1564

Done

Active Scan gets stuck Type-Defect Priority-Medium

1563

Invalid

Active Scanning doesn't work properly under the ATTACK mode in 2.4 Type-Defect Priority-Medium

1562

Fixed

Options/Database dialog in 2.4 Type-Defect Priority-Medium