Reports FAQs
Click to view navigation pane

Home

Reports FAQs

How do I edit report settings?How do I edit report settings?

Click the  button in the top right corner of the report. Use the wizard to change settings like the name, the report target, set filters, and choose content. Once you click Save, the report generated again with the new settings. 

Want to remove certain detections from reports?Want to remove certain detections from reports?

You can remove certain detections from web applications or scan reports using the ignore option. You can select detections and mark them as false positive, not applicable, or risk accepted. You can do this within a web application report/scan report or from the detections list. For details, see How do I remove detections from my reports?

Want to include ignored detections in reports?Want to include ignored detections in reports?

You can include ignored detections from web applications or scan reports using the remediation filters. You can configure the filter in the report template or edit the web application report/scan report. Once you opt to include ignored findings in the report, you can further choose types of ignored findings: False Positive, Not Applicable, or Risk Accepted to be included in the report. See Web App and Scan Report Template - Filter.

Want to include customized footer in your report?Want to include customized footer in your report?

You can define the customized footer text in the report template and it will be displayed in the WAS reports: Web application report and scan report (HTML and PDF formats). You can use the report template when you generate the report to view the custom footer. See Report Template - Display.

Can I open my report in a new widow?Can I open my report in a new widow?

Click the  icon in the report header to move the report to a new browser window. This makes side-by-side comparisons easy. It also increases the number of reports you can have open at one time. All the interactive features of your report are available in the new browser window.

How do I save and download reports?How do I save and download reports?

Each report you create opens in the Online Reports tab. You can download your open reports in multiple formats, and those reports are also saved to the reports list to be viewed and downloaded by authorized users.

Easy way to download datalists as reportsEasy way to download datalists as reports

Your report will be saved in 2 places: a) your report list, and b) your local file system. Your report will be removed from the report list in 7 days (when it expires).

How many reports can I save in the reports list?How many reports can I save in the reports list?

The user storage limit setting determines the maximum amount of WAS report data each user can save on our Qualys Cloud Platform. If you encounter an error message while saving a report, you can delete some existing reports and try again. Learn more.

Why should I add tags to a report?Why should I add tags to a report?

Tagging is a way of organizing reports, web applications and other configurations. When you download a report involving a tagged web application, you'll notice we suggest adding the web application's tags to the report. Tags are one of the many options we provide for filtering the report list. Tags also enable other users to access to your reports. Users whose scopes have tags in common with your reports can access those reports.

Tell me about security riskTell me about security risk

The security risk rating (high, medium, low) reflects the maximum severity level of all vulnerabilities included in the report. Ignored vulnerabilities are not included.

Icon for high security risk rating.

At least one non-fixed vulnerability with severity level 4 or 5 is included in the report.

Icon for medium security risk rating.

At least one non-fixed vulnerability with severity level 3 is included in the report, and no vulnerabilities with severity level 4 or 5 are included in the report.

Icon for low security risk rating.

At least one non-fixed vulnerability with severity level 1 or 2 is included in the report, and no vulnerabilities with severity level 3, 4 or 5 are included in the report.

Can we compare the results of findings between scan reports?Can we compare the results of findings between scan reports?

When we create a report for multiple scans, we compare the status of findings in the scans. The status of finding in the latest scan from the selected scans is considered. 

A comparative analysis of changes in scan results between incremental scan reports is also displayed in the Information Gathered details. When you expand the Results section you can see the changes from previous scans highlighted in multiple colors. Disable the Highlight changes from the previous scan option to hide the comparative analysis. By default, this option is enabled.

Setting a default report formatSetting a default report format

You can define the default format in which the report is downloaded in the Global Settings under Configuration. For details, see  Global Settings - Settings.

Tell me about Vulnerability Details in ReportsTell me about Vulnerability Details in Reports

We provide you with complete and raw HTTP request for detections. The reports downloaded in PDF and HTML format also display complete and raw HTTP request for detections (except for Information Gathered (IG) vulnerabilities).

The WAS reports in PDF or HTML format displayed link, method, POST data, headers and snippets of the response body. The downloaded reports (PDF and HTML) also display full request headers and full request body for vulnerabilities. The complete requests and responses will help you to reproduce or validate the issue.

Sample HTML report

Sample PDF report