{% load static %}
{% load display_tags %}
{% load humanize %}
{% load get_endpoint_status %}
{% load get_note_status %}
{% load get_notetype_availability %}
{% load event_tags %}
{% if findings %}
{% for finding in findings %}
{% ifchanged finding.severity %}
{{ finding.severity|capfirst }}
{% endifchanged %}
Finding {{ forloop.counter }} - {{ finding.title }}
{% if finding.tags %}
{% for tag in finding.tags.all %}
{{ tag }}
{% endfor %}
{% endif %}
Severity |
Status |
{% if finding.risk_acceptance_set.all %}
Acceptance |
{% endif %}
Date discovered |
Age |
Reporter |
{% if finding.mitigated %}
Date Mitigated |
Mitigated By |
{% endif %}
{% if finding.cwe %}
CWE |
{% endif %}
{% if finding.vulnerability_ids %}
Vulnerability IDs |
{% endif %}
Dojo ID |
{% if finding.severity %}
{{ finding.severity }}
{% if finding.cvssv3_score %}
({{ finding.cvssv3_score }})
{% endif %}
{% else %}
Unknown
{% endif %}
|
{{ finding.status }} |
{% if finding.risk_acceptance_set.all %}
{% comment %} for some reason the font-awesome icons don't work with the report template{% endcomment %}
{% for ra in finding.risk_acceptance_set.all|slice:":5" %}
acceptance
{% endfor %}
|
{% endif %}
{{ finding.date }} |
{{ finding.age }} days |
{{ finding.reporter }} |
{% if finding.mitigated %}
{{ finding.mitigated }} |
{{ finding.mitigated_by }} |
{% endif %}
{% if finding.cwe %}
{{ finding.cwe }}
|
{% endif %}
{% if finding.vulnerability_ids %}
{{ finding.vulnerability_ids }} |
{% endif %}
{{ finding.id }} |
{% include "dojo/snippets/endpoints.html" with finding=finding destination="Report" %}
{% if finding.cvssv3 %}
CVSS v3
{{ finding.cvssv3|markdown_render }}
{% endif %}
{% if finding.description %}
Description
{{ finding.description|markdown_render }}
{% endif %}
{% if finding.mitigation %}
Mitigation
{{ finding.mitigation|markdown_render }}
{% endif %}
{% if finding.get_report_requests %}
Sample Request(s): Displaying {{finding.get_report_requests.count}} of {{finding.burprawrequestresponse_set.count}}
{% for req in finding.get_report_requests %}
Request {{forloop.counter}}
{{ req.get_request }}
{% if req.get_response != "" %}
Response {{forloop.counter}}
{{ req.get_response|truncatechars_html:800 }}
{% endif %}
{% endfor %}
{% endif %}
{% if finding.impact %}
Impact
{{ finding.impact }}
{% endif %}
{% if finding.steps_to_reproduce %}
Steps to Reproduce
{{ finding.steps_to_reproduce|markdown_render }}
{% endif %}
{% if finding.severity_justification %}
Severity Justification
{{ finding.severity_justification|markdown_render }}
{% endif %}
{% if finding.references %}
References
{{ finding.references|markdown_render }}
{% endif %}
{% if include_finding_images %}
{% include "dojo/snippets/file_images.html" with size='original' obj=finding format="HTML" %}
{% endif %}
{% if include_finding_notes %}
{% with notes=finding.notes.all|get_public_notes %}
{% if notes.count > 0 %}
Notes
User |
Date |
{% with notes_with_type=notes|get_notetype_notes_count %}
{% if notes_with_type > 0 %}
Note Type |
{% endif %}
Note |
{% for note in notes reversed %}
{{ note.author.username }}
|
{{ note.date }}
|
{% if notes_with_type > 0 %}
{% if note.note_type != None %}
{{ note.note_type }}
{% endif %}
|
{% endif %}
{{ note|linebreaks }}
|
{% endfor %}
{% endwith %}
{% endif %}
{% endwith %}
{% endif %}
{% endfor %}