Fortinet 516 FortiWeb 5.0 Patch 6 Administration Guide
Viewing vulnerability scan reports
After a web vulnerability scan completes, the FortiWeb appliance generates a report
summarizing and analyzing the results of the scan. If you configured it to email the report to you
when complete, you may receive the report in your inbox. However, you can also view and
download it through the web UI.
To access this part of the web UI, your administrator’s account access profile must have Read
and Write permission to items in the Web Vulnerability Scan Configuration category. For details,
see “Permissions” on page 47.
Table 43:Web Vulnerability Scan > Web Vulnerability Scan > Scan History

Scan report contents

The web vulnerability scan report is divided into sections for a summary, discovered
vulnerabilities and affected URLs.
Field Description
View Click to view a scan report. See “Downloading vulnerability scan
reports” on page 517.
Download Click to download a copy of a scan report. See “Downloading
vulnerability scan reports” on page 517
Target Server Displays the host name of the server that was scanned for
vulnerabilities. Click this link to view the scan report associated
with this server.
URLs Found Displays the number of URLs on the target host that were
scanned for vulnerabilities.
Alerts Found Displays the total number of vulnerabilities discovered during the
scan.
Scan Time Displays the date and time that the scan was performed.
Scan Mode Indicates whether the scan job used Basic Mode (use HTTP GET
only and omit both user-defined and predefined sensitive URLs) or
Enhanced Mode (use both HTTP POST and GET, excluding only
user-defined URLs).