QA Standard std-qa-std true OFF MEDIUM Directory Browsing true MEDIUM Path Traversal true MEDIUM Remote File Inclusion true MEDIUM GET for POST true MEDIUM Anti-CSRF Tokens Check true MEDIUM External Redirect true MEDIUM Server Side Include true MEDIUM Cross Site Scripting (Reflected) true MEDIUM Cross Site Scripting (Persistent) true MEDIUM Cross Site Scripting (Persistent) - Prime true MEDIUM Cross Site Scripting (Persistent) - Spider true MEDIUM SQL Injection true MEDIUM SQL Injection - MySQL (Time Based) true MEDIUM SQL Injection - Hypersonic SQL (Time Based) true MEDIUM SQL Injection - Oracle (Time Based) true MEDIUM SQL Injection - PostgreSQL (Time Based) true MEDIUM Cross Site Scripting (DOM Based) true MEDIUM SQL Injection - MsSQL (Time Based) true MEDIUM CORS Header true MEDIUM Exponential Entity Expansion (Billion Laughs Attack) true MEDIUM Script Active Scan Rules true MEDIUM XSLT Injection true MEDIUM Server Side Code Injection true MEDIUM Remote OS Command Injection true MEDIUM XPath Injection true MEDIUM XML External Entity Attack true MEDIUM Expression Language Injection true MEDIUM SOAP Action Spoofing true MEDIUM SOAP XML Injection true MEDIUM Server Side Template Injection true MEDIUM Remote OS Command Injection (Time Based) true MEDIUM