midhunbaby

Yes you are correct. I am using https://themeforest.net/item/the7-responsive-multipurpose-wordpress-theme/5556590.

But the tool is showing error for below one also

GET /wp-login.php?log=&pwd=&rememberme=forever&wpsubmit=
Log+In&redirect_to=http%3A%2F%2Fdomainname.com%2Fwp-admin%2F&testcookie=1
HTTP/1.1
User-Agent

Is there any solution?
Thank you

This is another reason generated by the APPSCAN
Test Response is similar to the Original Response, indicating that the application processed body parameters that were submitted in the query.

Please let me know if you need any other information
Thank you.

GET /?widget_id=presscore-contact-form-widget–
1&send_message=&name=&email=test%40altoromutual.com&message=25 HTTP/1.1
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Referer: https://domainname.com/contact-us/
Host: domainname.com
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US
Content-Type: application/x-www-form-urlencoded
HTTP/1.1 200 OK
Transfer-Encoding: chunked
Link: <https://domainname.com//wp-json/&gt;; rel=”https://api.w.org/&#8221;
X-XSS-Protection: 1
Server: Apache
X-Content-Type-Options: nosniff
Date: Fri, 07 Jul 2017 08:53:22 GMT
Content-Type: text/html; charset=UTF-8

• This reply was modified 7 years, 7 months ago by Jan Dembowski.
• This reply was modified 7 years, 7 months ago by midhunbaby.

Yes I am scanning for vulnerability using IBM Security AppScan.
It says “Re-program the application to disallow handling of POST parameters that were listed in the Query”.