Does anybody has a Cibersecurity Scan that found that account/login URL has SQL Injection Vulnerabilities? How can I prove is a false positive threat, isn’t it?
1 Like
Automated scanners aren’t reliable. You can try it, but Shopify has a bug bounty program so if this is a real issue someone would have found it.
Hey @Pedro_Del_Favero , to add on to what David mentioned, we have guidance here on reporting any security concerns: https://www.shopify.com/ca/security-response