Vulnerability scan of my web application does not find SQL injection and cross site scripting issues.
Is there any specific configuration I need to do? Or how should I know why its not finding issues?
Configurations are as below:
Scope Limit to content located at or below URL subdirectory
Progressive Scanning Enabled