Security issues in static analysis

Question

When i scanned the project using Appscan source and also from SonarQube i am finding that almost 500 security XSS and other issues reported.

version: 1.8.4

upgraded jquery to latest

upgraded php to latest

Scanned code again and i am finding that same number of issues again.

Many of them are even coming from ckeditor code.

Answer 1

Can you provide details? Is there a public testing tool I can use to see exactly what it reports?

Based on your other question I don't think any of the reported issues are actually problems, since it was reporting things that are actually being escaped safely.