How to Write a Better Vulnerability Report

Security teams are humans too. (1337 5p34k not included.)

Published in

The Startup

6 min readJun 26, 2019

An essential skill for a security researcher is the ability to write concise and clear vulnerability reports. A well-written vulnerability report will help the security team reproduce and fix the issue faster and minimize the possibility of exploitation. In this post, we are going to go into the components of a good vulnerability report and some tips and tricks I’ve learned along the way.

Step 1 of Writing a Good Report: Craft a Descriptive Title and Summary

The first parts of a great vulnerability report would always be a descriptive title and a clear summary.

What is the vulnerability that you have found? Does it correspond to an OWASP top 10? Where is it found on the target? Ideally, the title of the report should be descriptive to the point that it allows the security team you are working with to immediately get an idea of what it is that you are reporting and its potential criticality. For example, instead of saying

Report Title:
IDOR on a critical endpoint

your report title should instead be:

Report Title:
IDOR on "https://example.com/change_password" leads to account takeover for all users

In the first two seconds of reading your report, the security engineer already has a good idea of what is to come in the rest of the report. And in the subsequent summary section, include any additional details that you weren’t able to include in the title, like the post parameters used for the attack, how you found it, and so on.

Report Summary:
The "https://example.com/change_password" endpoint takes two POST body parameters: "user_id" and "new_password". A POST request to this endpoint would change the password of user "user_id" to "new_password". This endpoint is not validating the "user_id" parameter and as a result, any user can change anyone else's password by manipulating the "user_id" parameter.

Step 2: Include a Severity Assessment

It is often helpful to include an honest assessment of the severity of the issue in your report. In…

How to Write a Better Vulnerability Report

Security teams are humans too. (1337 5p34k not included.)

Step 1 of Writing a Good Report: Craft a Descriptive Title and Summary

Step 2: Include a Severity Assessment

Written by Vickie Li

More from Vickie Li and The Startup

How to read more security + engineering books

And some book recommendations for 2022–23

I’ve Spent 16,733 Hours Studying Personal Finance — Here Are the 9 Most Important Money Rules

Budgeting and reducing expenses doesn’t make you wealthy

I Met a Quiet Millionaire Who Operates a $2.5m Tiny Business While Working 2-3 Hours a Day

This is bizarrely what he taught me

Hacking JSON Web Tokens (JWTs)

And how attackers forge tokens and log in as someone else.

Recommended from Medium

API Information Disclosure Leading to Admin Account Takeover

Hi everyone! In this project, my primary responsibility was to identify vulnerabilities in the website’s APIs. I’d like to share an…

How did I get 3300$ With Just FFUF!!

By searching inside one of the Bitcoin platforms I found there a place to document accounts by sending documents such as ID or passport…

Lists

Now in AI: Handpicked by Better Programming

Medium Publications Accepting Story Submissions

Mastering Reconnaissance with Project Discovery

Dissect your target during reconnaissance with Project Discovery

My Hacking Journey Part 3: NPC to Security Researcher with a simple 3 Stage Process

Hello! and Welcome to this last part of the blog!

LFI using Automation tool and Google Dorking

Hello everyone, This blog is about how I found LFI in domains using automation tools and google dorking, Let’s kick off.

How I Hacked my College Website totally just with SQL Injection (Part 1)

Intro : Hello all Hackers! Todays I will discuss about you that how I hacked my University Website , get access to the Website…