Internet-exposed
Posture
critical
3
high
4
medium
4
low
6
Ownership
Findings (22)
high
Unencrypted RDS snapshot
Scout SuiteCSPM
triaged
8
info
Missing CSP header on auth pages
CheckovIaC
false positive
9.6
low
Missing rate limiting on /login
CheckovIaC
open
5.9
medium
S3 bucket publicly readable
Scout SuiteCSPM
false positive
6
info
SQL Injection in user-input handler
OWASP ZAPDAST
triaged
5.7
low
Cross-site Scripting in profile renderer
TruffleHogSecrets
open
6.5
info
Outdated lodash with prototype pollution
WizCSPM
open
8.2
medium
Unencrypted RDS snapshot
WizCSPM
accepted
7.4
critical
IAM role with wildcard permissions
CheckmarxSAST
false positive
7.6
high
Container running as root
TrivyContainer
open
8.2
info
Missing CSP header on auth pages
tfsecIaC
open
9.7
high
Hardcoded AWS access key in source
Contrast RASPRASP
open
4.1
low
Container running as root
Burp Pro PenTestPenTest
false positive
4.6
low
Open Redis without auth
GitleaksSecrets
open
9.9
high
Container running as root
TruffleHogSecrets
open
9.8
medium
IAM role with wildcard permissions
CodeQLSAST
open
5.7
medium
Cross-site Scripting in profile renderer
CheckmarxSAST
triaged
4.1
low
Race condition in payment idempotency
GitleaksSecrets
false positive
8.7