XASPRO Sample Report — Save as PDF using your browser's print function

Security Assessment
Report

Client: [Client Name]
Assessment Type: Web Application Penetration Test
Date: [Assessment Date]
Author: Rabington Chitima
Classification: Confidential
⬤ Confidential — Do Not Distribute
// 01 Executive Summary

Executive Summary

XASPRO was engaged to perform a web application penetration test against [Client Name]'s application. The assessment was conducted using manual testing techniques aligned with the OWASP Testing Guide and industry best practices.

This assessment identified several security vulnerabilities within the application, including one critical issue that could allow unauthorised database access and data extraction. A medium-severity input validation weakness was also discovered.

Immediate remediation is recommended to reduce risk exposure. Detailed findings and specific remediation steps are provided in this report.

Overall Risk Rating: HIGH
// 02 Scope

Scope

ParameterDetail
Application URL(s)https://app.example.com
Testing TypeGrey-box (authenticated + unauthenticated)
Timeframe[Start Date] — [End Date]
EnvironmentStaging (mirrors production)
Credentials ProvidedStandard user + Admin user
// 03 Methodology

Methodology

Testing was aligned with the following standards and frameworks:

Testing Phases

// 04 Tools Used

Tools Used

ToolPurpose
Burp Suite ProfessionalWeb application proxy, scanning, and manual testing
SQLMapSQL injection detection and exploitation
NmapPort scanning and service enumeration
NucleiVulnerability scanning with custom templates
ffufDirectory and endpoint discovery
Custom ScriptsTargeted testing and proof-of-concept development
// 05 Findings Summary

Findings Summary

ID Vulnerability Severity CVSS Status
XASPRO-001 SQL Injection in Login Endpoint CRITICAL 9.8 Open
XASPRO-002 Weak Input Validation MEDIUM 5.3 Open
// 06 Detailed Findings

Detailed Findings

CRITICAL XASPRO-001: SQL Injection in Login Endpoint

Affected Endpoint: /login (POST)

CVSS Score: 9.8 (Critical)

CWE: CWE-89 (SQL Injection)

OWASP Category: A03:2021 — Injection

Authentication Required: No

Description

The application is vulnerable to SQL Injection via the login endpoint. User-supplied input in the username parameter is concatenated directly into SQL queries without parameterisation or input sanitisation. This allows an attacker to manipulate database queries and extract sensitive data.

Proof of Concept

sqlmap -u "https://app.example.com/login" --data="username=admin&password=test" --dbs --batch

The above command successfully enumerated all database names, confirming the injection point.

Impact

  • Complete database extraction (user credentials, PII, payment data)
  • Authentication bypass — login as any user including admin
  • Potential for data modification or deletion
  • Possible remote code execution via stacked queries

Remediation

  • Use parameterised queries / prepared statements for all database interactions
  • Validate and sanitise all user input on the server side
  • Implement a Web Application Firewall (WAF) as defence-in-depth
  • Apply principle of least privilege to database service accounts
  • Enable query logging and monitoring for anomalous patterns

MEDIUM XASPRO-002: Weak Input Validation

Affected Endpoint: /search, /profile/update (POST)

CVSS Score: 5.3 (Medium)

CWE: CWE-20 (Improper Input Validation)

OWASP Category: A03:2021 — Injection

Authentication Required: Yes (standard user)

Description

Multiple endpoints accept user input without adequate validation. While no direct injection was achieved beyond the login endpoint, the lack of input validation increases the attack surface and could lead to future vulnerabilities as the application evolves.

Impact

  • Increased attack surface for injection-based attacks
  • Potential for stored XSS if output encoding is also missing
  • Data integrity issues from malformed input

Remediation

  • Implement server-side input validation on all endpoints
  • Use allowlists for expected input formats where possible
  • Apply output encoding appropriate to the context (HTML, JavaScript, URL)
  • Implement Content Security Policy (CSP) headers
// 07 Risk Rating Explanation

Risk Rating Explanation

RatingCVSS RangeDescription
CRITICAL 9.0 — 10.0 Immediate exploitation possible. Significant data breach or system compromise likely.
HIGH 7.0 — 8.9 Significant impact. Exploitation requires minimal skill or access.
MEDIUM 4.0 — 6.9 Moderate risk. May require specific conditions or chaining with other vulnerabilities.
LOW 0.1 — 3.9 Limited impact. Informational or requires significant effort to exploit.
// 08 Remediation Plan

Remediation Plan

PriorityFindingActionEffort
CRITICAL XASPRO-001 Replace string concatenation with parameterised queries in login endpoint 1-2 hours
MEDIUM XASPRO-002 Implement server-side input validation across all endpoints 4-8 hours
// 09 Retesting

Retesting

A follow-up assessment is recommended after remediation is applied to confirm all vulnerabilities have been properly resolved.

XASPRO includes a free retest with every engagement. Once your team has implemented the fixes, we will:

// 10 Disclaimer

Disclaimer

This report reflects the security posture of the application at the time of testing and within the defined scope. Security is an ongoing process — new vulnerabilities may emerge as the application evolves or new attack techniques are discovered.

This assessment does not guarantee the absence of all vulnerabilities. It represents a best-effort evaluation using manual testing techniques and industry-standard tools within the agreed timeframe.

All testing was conducted with explicit written authorisation from the client.

Test performed by: Rabington Chitima

info@xaspro.co.uk

We are available to support remediation and further testing.

Book Your Assessment →