Role access: Admin and Editor roles can manage findings. Users do not have access to this section.
Overview
The Findings section manages the reusable library of security findings. These templates are used when creating report-specific findings during penetration tests.
Findings List
Table Columns
| Column | Description |
|---|---|
| Finding Name | The name/title of the finding |
| Recommendations # | Number of linked recommendations |
Actions
| Action | Icon | Description |
|---|---|---|
| Add Finding | Button | Create a new finding |
| View | Eye icon | View finding details (read-only) |
| Edit | Pencil icon | Edit the finding |
| View Recommendations | Link icon | View recommendations linked to this finding |
| Delete | Trash icon | Delete the finding (Admin only, with confirmation) |
Filtering & Pagination
- Search — filter findings by name
- Pagination — select 10, 25, 50, 100, or 1000 entries per page
- Refresh — reload the findings list
Creating a Finding
Fill in finding details
Complete the finding fields including name, severity, description, and CVSS score.
Finding Details
Each finding contains:- Name — the title of the finding
- Severity — Critical, High, Medium, or Low
- CVSS Score — numeric CVSS rating
- Description — detailed explanation of the vulnerability
- Linked Recommendations — recommendations associated with this finding
Finding Severity Levels
| Severity | Color | Description |
|---|---|---|
| Critical | Red | Immediate risk requiring urgent action |
| High | Orange | Significant risk that should be addressed quickly |
| Medium | Yellow | Moderate risk that should be planned for remediation |
| Low | Green | Minor risk with limited impact |
Managing Linked Recommendations
From a finding’s detail page, you can navigate to its linked recommendations. This shows all recommendations that apply to the finding and allows you to add or remove links.