Why does AVDS Web Scan not test static pages?

(From: Static web page) A static web page (sometimes called a flat page/stationary page) is a web page that is delivered to the user exactly as stored, in contrast to dynamic web pages which are generated by a web application.

Consequently a static web page displays the same information for all users, from all contexts, subject to modern capabilities of a web server to negotiate content-type or language of the document where such versions are available and the server is configured to do so.

Static web pages are often HTML documents stored as files in the file system and made available by the web server over HTTP. However, loose interpretations of the term could include web pages stored in a database, and could even include pages formatted using a template and served through an application server, as long as the page served is unchanging and presented essentially as stored.

Such pages do not interact with the visitor of the site or can be affected by the visitor, therefore there is no reason to test them for security vulnerabilities.

Have more questions? Submit a request

0 Comments

Please sign in to leave a comment.
Powered by Zendesk