Alert Reference Numbers
24 views
Skip to first unread message
47min
Jun 25, 2025, 9:25:19 PM6/25/25
to ZAP User Group
When I ran a baseline scan, the following was output:
Is the alertRef number correct?
Is the alertRef number correct?
{
"pluginid": "10049",
"alertRef": "10049",
"alert": "Non-Storable Content",
"name": "Non-Storable Content",
"riskcode": "0",
"confidence": "2",
{
"pluginid": "10049",
"alertRef": "10049",
"alert": "Storable and Cacheable Content",
"name": "Storable and Cacheable Content",
"riskcode": "0",
"confidence": "2",
I thought it would be like the following, but is it different?
"Non-Storable Content" : 10049-1
"Storable and Cacheable Content" : 10049-3
"Storable and Cacheable Content" : 10049-3
Simon Bennetts
Jul 1, 2025, 10:55:46 AM7/1/25
to ZAP User Group
Can you confirm which version of ZAP you are using and how you ran it?
I've just run this command:
docker run -v $(pwd):/zap/wrk/:rw -t ghcr.io/zaproxy/zaproxy:stable zap-baseline.py -t https://www.zaproxy.com -J testreport.json
and it appears to have returned the alertRefs as expected:
"pluginid": "10055",
"alertRef": "10055-13",
Cheers,
Simon
Reply all
Reply to author
Forward
0 new messages