Merge pull request #1625 from zapbot/update-site-content

Update site content

Author: psiinon

alerttags/cwe-200/index.html

@@ -211,48 +211,12 @@ <h4><a href="https://cwe.mitre.org/data/definitions/200.html">https://cwe.mitre.
                </tr>
 
 
-               <tr>
-                  <td><a href="/docs/alerts/120000-1/">Information Disclosure - Information in Browser localStorage</a></td>
-                  <td><a href=""></a></td>
-               </tr>
-            
-               
-               <tr>
-                  <td><a href="/docs/alerts/120000-2/">Information Disclosure - Information in Browser sessionStorage</a></td>
-                  <td><a href=""></a></td>
-               </tr>
-            
-               
-               <tr>
-                  <td><a href="/docs/alerts/120002-1/">Information Disclosure - JWT in Browser localStorage</a></td>
-                  <td><a href=""></a></td>
-               </tr>
-            
-               
-               <tr>
-                  <td><a href="/docs/alerts/120002-2/">Information Disclosure - JWT in Browser sessionStorage</a></td>
-                  <td><a href=""></a></td>
-               </tr>
-            
-               
                <tr>
                   <td><a href="/docs/alerts/100013/">Information Disclosure - Private IP Address</a></td>
                   <td><a href=""></a></td>
                </tr>
 
 
-               <tr>
-                  <td><a href="/docs/alerts/120001-1/">Information Disclosure - Sensitive Information in Browser localStorage</a></td>
-                  <td><a href=""></a></td>
-               </tr>
-            
-               
-               <tr>
-                  <td><a href="/docs/alerts/120001-2/">Information Disclosure - Sensitive Information in Browser sessionStorage</a></td>
-                  <td><a href=""></a></td>
-               </tr>
-            
-               
                <tr>
                   <td><a href="/docs/alerts/10025/">Information Disclosure - Sensitive Information in HTTP Referrer Header</a></td>
                   <td><a href=""></a></td>

alerttags/cwe-200/index.xml

@@ -84,55 +84,13 @@
       <guid>/docs/alerts/100012/</guid>
       <description>&lt;p&gt;An IBAN number was discovered in the HTTP response body.&lt;/p&gt;</description>
     </item>
-    <item>
-      <title>Information Disclosure - Information in Browser localStorage</title>
-      <link>/docs/alerts/120000-1/</link>
-      <pubDate>Mon, 01 Jan 0001 00:00:00 +0000</pubDate>
-      <guid>/docs/alerts/120000-1/</guid>
-      <description>&lt;p&gt;Information was stored in browser localStorage.&#xA;This is not unusual or necessarily unsafe - this informational alert has been raised to help you get a better understanding of what this app is doing. For more details see the Client tabs - this information was set directly in the browser and will therefore not necessarily appear in this form in any HTTP(S) messages.&lt;/p&gt;</description>
-    </item>
-    <item>
-      <title>Information Disclosure - Information in Browser sessionStorage</title>
-      <link>/docs/alerts/120000-2/</link>
-      <pubDate>Mon, 01 Jan 0001 00:00:00 +0000</pubDate>
-      <guid>/docs/alerts/120000-2/</guid>
-      <description>&lt;p&gt;Information was stored in browser sessionStorage.&#xA;This is not unusual or necessarily unsafe - this informational alert has been raised to help you get a better understanding of what this app is doing. For more details see the Client tabs - this information was set directly in the browser and will therefore not necessarily appear in this form in any HTTP(S) messages.&lt;/p&gt;</description>
-    </item>
-    <item>
-      <title>Information Disclosure - JWT in Browser localStorage</title>
-      <link>/docs/alerts/120002-1/</link>
-      <pubDate>Mon, 01 Jan 0001 00:00:00 +0000</pubDate>
-      <guid>/docs/alerts/120002-1/</guid>
-      <description>&lt;p&gt;JWT was stored in browser localStorage.&#xA;This is dangerous because data stored in localStorage does not expire. .&lt;/p&gt;</description>
-    </item>
-    <item>
-      <title>Information Disclosure - JWT in Browser sessionStorage</title>
-      <link>/docs/alerts/120002-2/</link>
-      <pubDate>Mon, 01 Jan 0001 00:00:00 +0000</pubDate>
-      <guid>/docs/alerts/120002-2/</guid>
-      <description>&lt;p&gt;JWT was stored in browser sessionStorage.&#xA;This is not unusual or necessarily unsafe - this informational alert has been raised to help you get a better understanding of what this app is doing. For more details see the Client tabs - this information was set directly in the browser and will therefore not necessarily appear in this form in any HTTP(S) messages.&lt;/p&gt;</description>
-    </item>
     <item>
       <title>Information Disclosure - Private IP Address</title>
       <link>/docs/alerts/100013/</link>
       <pubDate>Mon, 01 Jan 0001 00:00:00 +0000</pubDate>
       <guid>/docs/alerts/100013/</guid>
       <description>&lt;p&gt;A private IP such as 10.x.x.x, 172.x.x.x, 192.168.x.x or IPV6 fe00:: has been found in the HTTP response body. This information might be helpful for further attacks targeting internal systems.&lt;/p&gt;</description>
     </item>
-    <item>
-      <title>Information Disclosure - Sensitive Information in Browser localStorage</title>
-      <link>/docs/alerts/120001-1/</link>
-      <pubDate>Mon, 01 Jan 0001 00:00:00 +0000</pubDate>
-      <guid>/docs/alerts/120001-1/</guid>
-      <description>&lt;p&gt;Sensitive Information appears to have been stored in browser localStorage. This can violate PCI and most organizational compliance policies.&#xA;For more details see the Client tabs - this information was set directly in the browser and will therefore not necessarily appear in this form in any HTTP(S) messages.&lt;/p&gt;</description>
-    </item>
-    <item>
-      <title>Information Disclosure - Sensitive Information in Browser sessionStorage</title>
-      <link>/docs/alerts/120001-2/</link>
-      <pubDate>Mon, 01 Jan 0001 00:00:00 +0000</pubDate>
-      <guid>/docs/alerts/120001-2/</guid>
-      <description>&lt;p&gt;Sensitive Information appears to have been stored in browser sessionStorage. This can violate PCI and most organizational compliance policies.&#xA;For more details see the Client tabs - this information was set directly in the browser and will therefore not necessarily appear in this form in any HTTP(S) messages.&lt;/p&gt;</description>
-    </item>
     <item>
       <title>Information Disclosure - Sensitive Information in HTTP Referrer Header</title>
       <link>/docs/alerts/10025/</link>

alerttags/cwe-359/index.html

@@ -145,6 +145,30 @@ <h4><a href="https://cwe.mitre.org/data/definitions/359.html">https://cwe.mitre.
          <tbody>
 
 
+               <tr>
+                  <td><a href="/docs/alerts/120000-1/">Information Disclosure - Information in Browser localStorage</a></td>
+                  <td><a href=""></a></td>
+               </tr>
+            
+               
+               <tr>
+                  <td><a href="/docs/alerts/120000-2/">Information Disclosure - Information in Browser sessionStorage</a></td>
+                  <td><a href=""></a></td>
+               </tr>
+            
+               
+               <tr>
+                  <td><a href="/docs/alerts/120001-1/">Information Disclosure - Sensitive Information in Browser localStorage</a></td>
+                  <td><a href=""></a></td>
+               </tr>
+            
+               
+               <tr>
+                  <td><a href="/docs/alerts/120001-2/">Information Disclosure - Sensitive Information in Browser sessionStorage</a></td>
+                  <td><a href=""></a></td>
+               </tr>
+            
+               
                <tr>
                   <td><a href="/docs/alerts/10062/">PII Disclosure</a></td>
                   <td><a href=""></a></td>

alerttags/cwe-359/index.xml

@@ -7,6 +7,34 @@
     <generator>Hugo</generator>
     <language>en-us</language>
     <atom:link href="/alerttags/cwe-359/index.xml" rel="self" type="application/rss+xml" />
+    <item>
+      <title>Information Disclosure - Information in Browser localStorage</title>
+      <link>/docs/alerts/120000-1/</link>
+      <pubDate>Mon, 01 Jan 0001 00:00:00 +0000</pubDate>
+      <guid>/docs/alerts/120000-1/</guid>
+      <description>&lt;p&gt;Information was stored in browser localStorage.&#xA;This is not unusual or necessarily unsafe - this informational alert has been raised to help you get a better understanding of what this app is doing. For more details see the Client tabs - this information was set directly in the browser and will therefore not necessarily appear in this form in any HTTP(S) messages.&lt;/p&gt;</description>
+    </item>
+    <item>
+      <title>Information Disclosure - Information in Browser sessionStorage</title>
+      <link>/docs/alerts/120000-2/</link>
+      <pubDate>Mon, 01 Jan 0001 00:00:00 +0000</pubDate>
+      <guid>/docs/alerts/120000-2/</guid>
+      <description>&lt;p&gt;Information was stored in browser sessionStorage.&#xA;This is not unusual or necessarily unsafe - this informational alert has been raised to help you get a better understanding of what this app is doing. For more details see the Client tabs - this information was set directly in the browser and will therefore not necessarily appear in this form in any HTTP(S) messages.&lt;/p&gt;</description>
+    </item>
+    <item>
+      <title>Information Disclosure - Sensitive Information in Browser localStorage</title>
+      <link>/docs/alerts/120001-1/</link>
+      <pubDate>Mon, 01 Jan 0001 00:00:00 +0000</pubDate>
+      <guid>/docs/alerts/120001-1/</guid>
+      <description>&lt;p&gt;Sensitive Information appears to have been stored in browser localStorage. This can violate PCI and most organizational compliance policies.&#xA;For more details see the Client tabs - this information was set directly in the browser and will therefore not necessarily appear in this form in any HTTP(S) messages.&lt;/p&gt;</description>
+    </item>
+    <item>
+      <title>Information Disclosure - Sensitive Information in Browser sessionStorage</title>
+      <link>/docs/alerts/120001-2/</link>
+      <pubDate>Mon, 01 Jan 0001 00:00:00 +0000</pubDate>
+      <guid>/docs/alerts/120001-2/</guid>
+      <description>&lt;p&gt;Sensitive Information appears to have been stored in browser sessionStorage. This can violate PCI and most organizational compliance policies.&#xA;For more details see the Client tabs - this information was set directly in the browser and will therefore not necessarily appear in this form in any HTTP(S) messages.&lt;/p&gt;</description>
+    </item>
     <item>
       <title>PII Disclosure</title>
       <link>/docs/alerts/10062/</link>

alerttags/cwe-922/index.html

@@ -0,0 +1,219 @@
+<!doctype html>
+<html lang="en">
+
+<head>
+  <meta charset="utf-8">
+  <meta name="viewport" content="width=device-width, initial-scale=1, viewport-fit=cover">
+  <meta name="description" content="The world’s most widely used web app scanner. Free and open source. ZAP is a community project actively maintained by a dedicated international team, and a GitHub Top 1000 project.">
+  
+  <link rel="alternate" type="application/rss+xml" href="/alerttags/cwe-922/index.xml" title="ZAP" />
+  <title>ZAP &ndash; CWE-922</title>
+
+  <link rel="shortcut icon" href="/img/favicon.ico" type="image/x-icon" />
+  <link href="https://fonts.googleapis.com/css?family=Quicksand:500,700" rel="stylesheet">
+  <link href="https://fonts.googleapis.com/css?family=Istok+Web|Open+Sans:400,700|Rubik&display=swap" rel="stylesheet">
+  <script src="https://cdnjs.cloudflare.com/ajax/libs/lunr.js/2.3.6/lunr.min.js"></script>
+  
+  <script async src="https://www.googletagmanager.com/gtag/js?id=G-JDLGW1172L"></script>
+  <script>
+    window.dataLayer = window.dataLayer || [];
+    function gtag(){dataLayer.push(arguments);}
+    gtag('js', new Date());
+    gtag('config', 'G-JDLGW1172L');
+  </script>
+  
+  
+  
+    <link href="/main.90b582.css" rel="stylesheet">
+  
+</head>
+<body>
+<div id="page-container">
+ <div id="content-wrap">
+  <header class="site-header">
+    <div class="wrapper flex jc-sb ai-c">
+    <div class="flex">
+        <nav class="site-nav" role="navigation">
+        <a href="/" aria-label="return to landing page" class="logo">
+            <img src = "/img/zap-by-checkmarx.svg" height="65px" alt="ZAP By Checkmarx"/>
+        </a>
+        </nav>
+    </div>
+    <div class="nav-content flex">
+      <nav class="site-nav" role="navigation">
+        <div class="hamburger-icon">
+          <svg xmlns="http://www.w3.org/2000/svg" width="24" height="24" viewBox="0 0 24 24"><path d="M0 0h24v24H0z" fill="none"/><path d="M3 18h18v-2H3v2zm0-5h18v-2H3v2zm0-7v2h18V6H3z"/></svg>
+        </div>
+        <input class="hamburger-click" aria-label="site menu" type="checkbox" />
+        <ul id="primary-menu" class="flex">
+          
+          
+            
+              <li class="">
+                  <a href="/blog/" title="Blog page">
+                  Blog
+                </a>
+              </li>
+            
+          
+            
+              <li class="">
+                  <a href="/videos/" title="Videos page">
+                  Videos
+                </a>
+              </li>
+            
+          
+            
+              <li class="">
+                  <a href="/docs/" title="Documentation page">
+                  Documentation
+                </a>
+              </li>
+            
+          
+            
+              <li class="">
+                  <a href="/community/" title="Community page">
+                  Community
+                </a>
+              </li>
+            
+          
+          <li id="search-menu">
+            <a class="toggler" href="#">
+              <img height="20" width="20" src="/img/search.svg" alt="Search icon"/>
+            </a>
+  
+            <form data-no-csrf action="/search">
+              <input type="text" name="q" placeholder="Search ..." style="width: 100%" />
+            </form>
+          </li>
+        </ul>
+      </nav>
+      <div class="download-button">
+        <a id="cta-download" href="/download/" class="button button--orange">Download</a>
+      </div>
+      <div class="social-links header-social">
+        <ul class="flex ai-c no-list-style m-10 px-20">
+          <li>
+            <a href="https://github.com/zaproxy" aria-label="Go to ZAP's GitHub repo"> <svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 19.36 18.88"><path d="M9.68 0a9.68 9.68 0 0 0-3.06 18.86c.48.09.64-.21.64-.46v-1.8C4.57 17.18 4 15.45 4 15.45A2.57 2.57 0 0 0 2.93 14c-.88-.6.07-.59.07-.59a2 2 0 0 1 1.48 1 2.06 2.06 0 0 0 2.82.8A2 2 0 0 1 7.91 14c-2.15-.29-4.41-1.12-4.41-4.83a3.72 3.72 0 0 1 1-2.59A3.53 3.53 0 0 1 4.59 4s.82-.26 2.67 1a9 9 0 0 1 4.84 0c1.9-1.25 2.66-1 2.66-1a3.49 3.49 0 0 1 .1 2.57 3.71 3.71 0 0 1 1 2.59c0 3.72-2.26 4.54-4.42 4.78a2.3 2.3 0 0 1 .67 1.79v2.67c0 .25.15.56.64.46A9.68 9.68 0 0 0 9.68 0z" fill="#00549e"/></svg></a>
+          </li>
+          <li>
+              <a href="https://twitter.com/zaproxy" aria-label="Follow ZAP on Twitter"> <svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 19.36 15.73"><path d="M19.36 1.86a8 8 0 0 1-2.28.63 3.94 3.94 0 0 0 1.74-2.2 7.53 7.53 0 0 1-2.52 1 4 4 0 0 0-6.77 3.59A11.29 11.29 0 0 1 1.35.73 4 4 0 0 0 2.58 6a3.91 3.91 0 0 1-1.8-.5A4 4 0 0 0 4 9.48a4 4 0 0 1-1.79.06 4 4 0 0 0 3.67 2.76A8 8 0 0 1 0 14a11.32 11.32 0 0 0 6.09 1.78A11.24 11.24 0 0 0 17.38 3.92a8.08 8.08 0 0 0 1.98-2.06z" fill="#00549e"/></svg></a>
+          </li>
+        </ul>
+      </div>
+    </div>
+
+  </div>
+</header>
+
+  
+<section class="bolt-header">
+  <div class="wrapper py-20">
+    
+      <h1 class="text--white">Alert Tag:  CWE-922</h1>
+    
+  </div>
+</section>
+  <div class="wrapper py-70">
+    <header class="breadcrumbs">
+        <a href="/alerttags/">Alert Tags</a> &gt;
+        
+        <a href="/alerttags/cwe-922">CWE-922</a>
+        
+    </header>
+   
+
+    
+      
+      
+        <h4><a href="https://cwe.mitre.org/data/definitions/922.html">https://cwe.mitre.org/data/definitions/922.html</a></h4>
+      
+      All of the alerts which use this tag:
+    
+
+   <div class="flex latest-versions">
+      <table data-sort-filter>
+         <thead>
+            <tr>
+               <th>Tag</th>
+               <th>Link</th>
+            </tr>
+         </thead>
+         <tbody>
+            
+               
+               <tr>
+                  <td><a href="/docs/alerts/120002-1/">Information Disclosure - JWT in Browser localStorage</a></td>
+                  <td><a href=""></a></td>
+               </tr>
+            
+               
+               <tr>
+                  <td><a href="/docs/alerts/120002-2/">Information Disclosure - JWT in Browser sessionStorage</a></td>
+                  <td><a href=""></a></td>
+               </tr>
+            
+         </tbody>
+      </table>
+   </div>
+  </div>
+
+ </div>
+  <footer class="site-footer py-20 mt-20">
+  <div class="wrapper flex jc-sb">
+    <div class="flex ai-c">
+    <div class="footer-logo"><svg xmlns="http://www.w3.org/2000/svg" width="55px" viewBox="0 0 77.58 77.61"><path d="M49.48 21.64a3.46 3.46 0 0 1 .44 3 3.38 3.38 0 0 1-2.16 2.14l-1.17.38 10.74 13.56a3.39 3.39 0 0 1-1.83 5.41l-2 .5L68 65A37.78 37.78 0 0 0 39.85 2c-1.34 0-2.66.07-4 .2zM23.33 48.26a3.4 3.4 0 0 1 .45-6.09L25 41.7l-13.81-10a3.4 3.4 0 0 1 .62-5.86l.2-.09-5.47-3.84a37.79 37.79 0 0 0 55.32 48.6z" fill="#fff"/><path d="M67.84 69.48L49 45.59a.55.55 0 0 1 .28-.87l5.55-1.36a.58.58 0 0 0 .23-.13.48.48 0 0 0 .09-.11.62.62 0 0 0 .08-.24.58.58 0 0 0 0-.26.54.54 0 0 0-.07-.13L42.29 26.37a.75.75 0 0 1-.07-.12.55.55 0 0 1 .31-.74l4.35-1.4a.54.54 0 0 0 .26-.83L30.92.22a.5.5 0 0 0-.61-.22L.32 13a.55.55 0 0 0-.1.94l16.72 11.88a.52.52 0 0 1 .22.49.45.45 0 0 1-.09.26.48.48 0 0 1-.09.11l-.13.08-3.93 1.72a.55.55 0 0 0-.29.31v.13a.59.59 0 0 0 .22.5l8.62 6.22 8.61 6.21a.55.55 0 0 1 0 .87.57.57 0 0 1-.13.08l-5.11 2a.55.55 0 0 0-.28.75.56.56 0 0 0 .21.22l42.43 24.5a.53.53 0 0 0 .64-.79z" fill="#fff"/></svg></div>
+    <div class="footer-left">
+      <nav class="footer-nav">
+        <ul class="flex">
+        
+        
+          
+            <li class="ml-10"><a href="/blog/" title="Blog page">Blog</a></li>
+          
+        
+          
+            <li class="ml-10"><a href="/videos/" title="Videos page">Videos</a></li>
+          
+        
+          
+            <li class="ml-10"><a href="/community/" title="Community page">Community</a></li>
+          
+        
+          
+            <li class="ml-10"><a href="/docs/statistics/" title="Statistics page">Statistics</a></li>
+          
+        
+        </ul>
+      </nav>
+      
+    </div>
+  </div>
+
+    <div class="flex ai-c">
+      <span class="OutroFooter">
+      © Copyright 2024 the ZAP Dev Team</br>
+      ZAP by <a href="https://checkmarx.com" aria-label="Checkmarx">Checkmarx</a>
+      </span>
+      <ul class="flex footer-social">
+        <li>
+          <a href="https://github.com/zaproxy/" aria-label="Go to ZAP's GitHub repo"> <svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 19.36 18.88"><path d="M9.68 0a9.68 9.68 0 0 0-3.06 18.86c.48.09.64-.21.64-.46v-1.8C4.57 17.18 4 15.45 4 15.45A2.57 2.57 0 0 0 2.93 14c-.88-.6.07-.59.07-.59a2 2 0 0 1 1.48 1 2.06 2.06 0 0 0 2.82.8A2 2 0 0 1 7.91 14c-2.15-.29-4.41-1.12-4.41-4.83a3.72 3.72 0 0 1 1-2.59A3.53 3.53 0 0 1 4.59 4s.82-.26 2.67 1a9 9 0 0 1 4.84 0c1.9-1.25 2.66-1 2.66-1a3.49 3.49 0 0 1 .1 2.57 3.71 3.71 0 0 1 1 2.59c0 3.72-2.26 4.54-4.42 4.78a2.3 2.3 0 0 1 .67 1.79v2.67c0 .25.15.56.64.46A9.68 9.68 0 0 0 9.68 0z" fill="#00549e"/></svg></a>
+        </li>
+        <li>
+            <a href="https://twitter.com/zaproxy" aria-label="Follow ZAP on Twitter"> <svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 19.36 15.73"><path d="M19.36 1.86a8 8 0 0 1-2.28.63 3.94 3.94 0 0 0 1.74-2.2 7.53 7.53 0 0 1-2.52 1 4 4 0 0 0-6.77 3.59A11.29 11.29 0 0 1 1.35.73 4 4 0 0 0 2.58 6a3.91 3.91 0 0 1-1.8-.5A4 4 0 0 0 4 9.48a4 4 0 0 1-1.79.06 4 4 0 0 0 3.67 2.76A8 8 0 0 1 0 14a11.32 11.32 0 0 0 6.09 1.78A11.24 11.24 0 0 0 17.38 3.92a8.08 8.08 0 0 0 1.98-2.06z" fill="#00549e"/></svg></a>
+        </li>
+      </ul>
+    </div>
+  </div>
+</footer>
+
+  
+  
+    <script src="/main.90ed09.js"></script>
+  
+</div>
+</body>
+</html>