Internet-exposed
Posture
critical
4
high
1
medium
6
low
6
Ownership
Findings (19)
low
Missing rate limiting on /login
CheckmarxSAST
false positive
9.7
medium
Insecure deserialization in message queue consumer
TruffleHogSecrets
triaged
4.3
high
Unencrypted RDS snapshot
Contrast RASPRASP
open
9.3
medium
SQL Injection in user-input handler
Cloudflare WAFWAF
accepted
8.8
medium
Dependency confusion risk on internal package
WizCSPM
open
7.3
medium
Missing CSP header on auth pages
CheckovIaC
accepted
7.2
info
Path traversal in file download endpoint
SemgrepSAST
false positive
8.9
low
JWT signed with weak HS256 secret
CheckovIaC
open
8.7
low
S3 bucket publicly readable
Scout SuiteCSPM
open
5.3
critical
Open Redis without auth
CheckovIaC
open
9.4
critical
Insecure deserialization in message queue consumer
CheckovIaC
triaged
4.9
critical
Dependency confusion risk on internal package
SonarQubeSAST
open
4.9
low
Path traversal in file download endpoint
ProwlerCSPM
open
4.2
medium
Dependency confusion risk on internal package
TrivyContainer
triaged
9
critical
Hardcoded AWS access key in source
SonarQubeSAST
triaged
6.8
info
Cross-site Scripting in profile renderer
TrivyContainer
false positive
9.3