Enhanced Reporting Features
Limited Customer Release
July 31, 2025
Enhanced Reporting - Web Application, Scan, and Scorecard Reports
Starting with this release, the web application, scan, and scorecard reports are enhanced to provide additional information about the web applications and the vulnerabilities detected during scans.
These enhancements also improve the display and formatting of the reports, making them easier to read, analyze, and share with stakeholders.”
Web Application Report
The web application report displays the TruRisk™ score of the web application, which provides the security posture of the asset.
The following image displays an excerpt of the web application report in HTML format with the TruRisk™ score.
Scan Report
The scan report is enhanced to provide details of the vulnerabilities detected in the scan, such as QDS score, CVE associated with the QID, CWE, CVSS values, and OWASP data.
The following image displays an excerpt of the sample scan report in PDF with the vulnerability details:
Scorecard Report
The scorecard report displays the enhanced version with the refined display and formatting, and is available to download.
The following image displays an excerpt of the sample scorecard report in an HTML format.
Download Enhanced Reports
The enhanced reports can be downloaded only as the Web Archive (HTML), Compressed HTML pages (ZIP), Portable Document Format (PDF), and Encrypted Portable Document Format (PDF).
If you download reports in any other format, the reports are not displayed in the enhanced format.
Addition of Proxy Usage Details in Scan Reports
The Appendix | Scan Details section in the scan report includes the Proxy Host field that displays the proxy name when the proxy is used during the scan. This helps identify the proxy usage.
The following image displays the scan report where the Proxy Host field displays the proxy record used in the scan.
The following image displays how the Proxy Host field is populated in the scan report when the proxy is not used in the scan.
Refresh Option for Online Reports
The reports displayed in the Online Reports tab are enhanced with the new Refresh option. Using this option, you can refresh the report manually if there are any changes to the criteria in the report.
For example, if one of the detections in the scan report is ignored or the severity is changed, you can refresh the report to view the updated report with the changes. Earlier, you had to navigate to the Scans tab, search for the specific scan, and view the report.
Issues Addressed
The following notable and important reporting issues are fixed with the new reporting service.
| Category/Component | Description |
|---|---|
|
Reports |
In a scenario where the user edited the severity of the finding, the web application and scan reports display the original severity. The updated severity is displayed only in the View Detection Details section of the specific finding. The issue is fixed, and the current severity of the finding is available in the report in the Online Reports tab and in the downloaded report. |
|
Reports |
We fixed an issue where the vulnerability details, such as CVE, CVSS, and CWE information, were not available in the scan report. With the changes in the 1.22 release, the reporting is enhanced to provide vulnerability details in scan reports. For more information, see Enhanced Reporting. |
|
Web application and scan report |
We fixed an issue where the user could not download the web application report and scan report. It was observed that the report download starts, takes a long time, and then results in an error. |
|
Reports |
We fixed an issue where a discrepancy was observed in the number of vulnerabilities detected in the scan report in the Online Reports tab and in the downloaded report. |
|
Scorecard report download |
We fixed an issue where the user encountered an error while downloading the Scorecard report. Now, the user can download scorecard reports in all the supported formats. |