can not recreate sql injection
I ran the burp suite scan on our internal website, they found a few sql injection listed as Tentative. I was trying to validate this error using the repeater option.
I have not be able to validate this error, using the same error showing in the report.
In the response --> tab HTML does show a error at all.
Here is the Request from the report
Content-Disposition: form-data; name="Amount_Requested"
Here is the Response
<!-- master_navitem: main_error_captcharequired -->
I setup the raw request up the same
Here is response from raw request setup
<!-- master_navitem: undefined -->
I have try to recreate error message many times, has not work once.
Please help with this
Thanks for your message.
If you have been unable to validate the finding using manual testing, then it is possible that the issue is a false positive.
Please let us know if you need any further assistance.