• Use Cases
    • Team
      • Technical
      • Digital
    • Industry
      • eCommerce
      • Travel
      • Gambling
      • Public Sector
    • Website Type
      • EnterpriseHigh traffic websites with advanced functionality, such as booking, browsing or paying.
      • Small/MediumWebsites with low-mid traffic that have one or more key functionalities including checkout, sign-ups or account login.
      • AgenciesWeb agencies that help clients build, maintain and improve their websites.
  • Platform
    • Performance
    • Security
    • Reliability
    • How It Works
  • Customers
  • Learn
    • About Us
    • Knowledge Base
    • From The Blog
      • How Travel Disruptions Have Affected Website Performance
      • The Cloudflare Incident; How it affected us
      • New Feature: Sitemap Monitoring
  • Pricing
  • Log In
  • Get Started
  • Use Cases
    • Team
      • Technical
      • Digital
    • Industry
      • eCommerce
      • Travel
      • Gambling
      • Public Sector
    • Website Type
      • EnterpriseHigh traffic websites with advanced functionality, such as booking, browsing or paying.
      • Small/MediumWebsites with low-mid traffic that have one or more key functionalities including checkout, sign-ups or account login.
      • AgenciesWeb agencies that help clients build, maintain and improve their websites.
  • Platform
    • Performance
    • Security
    • Reliability
    • How It Works
  • Customers
  • Learn
    • About Us
    • Knowledge Base
    • From The Blog
      • How Travel Disruptions Have Affected Website Performance
      • The Cloudflare Incident; How it affected us
      • New Feature: Sitemap Monitoring
  • Pricing
  • Log In
  • Get Started

Back to Knowledgebase

Categories

Account & Billing

Getting Started

Performance Monitoring

Alerts & Notifications

Uptime Monitoring

Security Monitoring

Synthetic User Journey Monitoring

Interpreting Data

Assurance and Search

Sitemap Monitoring

Other Articles

Vulnerability Scans – Good Practises

How do I change the frequency of my vulnerability scans?

Interpreting Scan Data

From a security perspective it can be extremely useful to perform regular vulnerability scans to provide an insight into issues flagged on your site. The scans provide some information but it is then essential to interpret and action these suggestions to secure your site.

Once your scan has run you can download it as either a HTML or a CSV. Vulnerabilities are separated into five different categories:

  • Info (None)
  • Low
  • Medium
  • High
  • Critical

You will see the vulnerability report in your RapidSpike account with vulnerabilities displayed from Critical to Low. If you are unsure about a vulnerability displayed you can investigate further by clicking the ‘view’ button which will take you to an information page with a brief synopsis and some assistance for a solution.

As an example, here is a high severity warning for ‘CGI Generic Remote File inclusion’. Included on this page will be an explanation of the vulnerability, Proof of Concept, remediation and general information. If you are not familiar with vulnerability scans we also include a CVSS number which scores the vulnerability from 0 – 10 for easy prioritisation and categorisation into it’s severity tag.

You may notice that some vulnerabilities flagged disappear in following scans even though they haven’t been investigated or actioned. A good example of this is domain expiry date and SSL renewal which for many companies is on an automatic renewal. This is something to be aware of however despite being classed as a vulnerability there may already be measures in place to stop it becoming an issue.

If you are unsure of any vulnerabilities we recommend speaking to the relevant team in your company or potentially contacting a third party organisation to look further into the issues raised.

Start your free 30-day trial today

Start monitoring today, no credit card required. Or chat to our friendly team about your requirements.

GET STARTEDLet’s Talk

RapidSpike - Global eCommerce Winner 2021
RapidSpike - Northern Digital Awards Winners
RapidSpike - Insider Yorkshires Most Exciting Companies
RapidSpike - UK Dev Awards 2021 Winner
RapidSpike - Prolific North Top Tech 30 To Watch
RapidSpike - Cyber Accelerator Alumni

Copyright © 2022 — All Rights Reserved.

RapidSpike - AWS Well Architected
RapidSpike - AWS Partner Network
  • Solutions
    • Technical
    • Digital
    • eCommerce
    • Travel
    • Gambling
    • Public Sector
    • Enterprise
    • Small/Medium
    • Agencies
    • New Relic
    • Customers
    • Pricing
  • Platform
    • Performance
    • Security
    • Reliability
    • How It Works
    • Insights
    • Alerting & Integrations
    • All Features
    • Synthetic User Journeys
    • Google Lighthouse
    • Core Web Vitals & Performance
    • Webpage Test
    • Real User Monitoring
    • Vulnerability Scanning
    • Magecart Attack Detection
    • Uptime
    • Assurance & SEO
  • Learn
    • Blog
    • Knowledge Base
    • API Documentation
    • System Status
    • RapidSpike Roadmap
    • Log In
  • Company
    • About Us
    • Contact
    • Careers
    • Press
    • Privacy Policy
    • Terms & Conditions
    • Vulnerability Disclosure