Comments containing eval() should be ignored.
// item A: restricted from using eval() function
// eval("window." + i.toString().toUpperCase() + " = " + n++);
//tt_op = (document.defaultVi...
Id #5813 |
Planned Release:
None
|
Last Updated: Dec 13 2010 at 5:39 PM by chrisweber |
Created On: Dec 13 2010 at 5:39 PM by chrisweber
- Dump the contents of all JSON arrays, or just flag that a ton of data is being pushed down but not displayed
- List all hidden or disabled fields
- Collect all cookies
- Flag cookies that might b...
Id #5810 |
Planned Release:
None
|
Last Updated: Nov 9 2010 at 10:20 PM by chrisweber |
Created On: Nov 9 2010 at 10:20 PM by chrisweber
The Results should be available in both a list view (currently working) and a tree-view. A toggle button/switch should be available to switch between the two.
Tree-view results should organize th...
Id #5808 |
Planned Release:
None
|
Last Updated: Nov 9 2010 at 8:12 PM by chrisweber |
Created On: Nov 9 2010 at 8:04 PM by
The check would see if the Content-Disposition header exists in the response and verify that the 'X-Download-Options: noopen' header is present.
Id #4268 |
Planned Release:
Watcher v1.5.4
|
Last Updated: Apr 13 2010 at 7:02 PM by chrisweber |
Created On: Apr 13 2010 at 7:02 PM by chrisweber
After unzipping a .XAP file, review the .XAML manifest file's 'deployment' section for an attribute and value:
ExternalCallersFromCrossDomain="ScriptableOnly"
When the attribute is set to Script...
Id #3855 |
Planned Release:
None
|
Last Updated: Jan 18 2010 at 7:40 AM by chrisweber |
Created On: Jan 18 2010 at 7:40 AM by chrisweber
XAP's follow the ZIP file format? Include a Utility class for decompressing XAP. Reference for unzipping XAP:
http://www.sharpgis.net/post/2009/04/21/REALLY-small-unzip-utility-for-Silverlight.a...
Id #3853 |
Planned Release:
None
|
Last Updated: Jan 18 2010 at 7:21 AM by chrisweber |
Created On: Jan 18 2010 at 7:16 AM by chrisweber
Research CWE ID's that Watcher has checks for, and providing that mapping ID in the 'standards compliance' column for each check.
Id #3852 |
Planned Release:
None
|
Last Updated: Jan 17 2010 at 9:21 PM by chrisweber |
Created On: Jan 17 2010 at 9:21 PM by chrisweber
The watcher_exceptions.txt file cannot be created on Vista or Windows 7 systems if Watcher was installed to the 'Program Files' directory. This directory requires administrative permissions to wri...
Id #3839 |
Planned Release:
Watcher v1.5.4
|
Last Updated: Jan 15 2010 at 10:23 PM by chrisweber |
Created On: Jan 15 2010 at 10:23 PM by chrisweber
|
|
|
|
|