Activity
From November 12, 2021 to December 11, 2021
December 10, 2021
- 17:55 1. CDB_Phase 2 & 3 Development Bug #12680 (Work Completed-End life cycle): Rentas_IOS - Error display when click Yes at popup ch...
- Path: BSNeBIZ > Payment & Transfer
Scenario:
1. Perform IBG transaction & insert amount exceeded IBG limit
2. En... - 17:34 1. CDB_Phase 2 & 3 Development Bug #12679 (Work Completed-End life cycle): Rentas_IOS - Beneficiary ID type of Favourite Rentas ...
- Path: BSNeBIZ > Payment & Transfer
Scenario:
1. Perform Favourite Rentas transaction
2. Check for Beneficiary ID... - 17:28 1. CDB_Phase 2 & 3 Development Bug #12678 (Work Completed-End life cycle): Rentas_IOS - Cannot add account as Favourite
- Path: BSNeBIZ > Payment & Transfer
Scenario:
1. Initiate Rentas transaction
2. At result screen, click "Add as F... - 17:10 1. CDB_Phase 2 & 3 Development Bug #12677 (Work Completed-End life cycle): Rentas_IOS - System currently unavailable display whe...
- Path: BSNeBIZ > Payment & Transfer
Scenario:
1. Perform Rentas transaction
2. Insert special character to Benefi... - 17:02 Task #12564 (Internal Testing): Pentest_IBAM - Multiple Concurrent Session Allowed [LOW]
- Staging allow multiple login. Production already applied Single Sign-On.
- 16:54 1. CDB_Phase 2 & 3 Development Bug #12676 (Work Completed-End life cycle): Rentas_IOS - No validation & error message when inser...
- Path: BSNeBIZ > Payment & Transfer
Scenario:
1. Perform Rentas transaction
2. Insert special character to Benefi... - 16:33 1. CDB_Phase 2 & 3 Development Bug #12675 (Work Completed-End life cycle): Rentas_IOS - No validation & error message when left ...
- Path: BSNeBIZ > Payment & Transfer
Scenario:
1. Perform Rentas transaction
2. Leave empty Bank Name
3. Leave em... - 16:12 1. CDB_Phase 2 & 3 Development Bug #12674 (Work Completed-End life cycle): Rentas_IOS - Result screen of Single User is freeze
- Path: BSNeBIZ > Payment & Transfer
Scenario:
1. Perform Single User for Rentas transaction
2. At Result screen, ... - 16:07 1. CDB_Phase 2 & 3 Development Bug #12673 (Work Completed-End life cycle): Rentas_IOS - Beneficiary ID check by default is disable
- Path: BSNeBIZ > Payment & Transfer
Scenario:
1. Perform New Rentas transaction/ Favourite Rentas transaction
2. ... - 15:47 Task #12586 (Internal Testing): Pentest_CDB - Missing "X-Content-Type-Options" Header [LOW]
- Please refer sc4.png at Task 12584
- 15:47 Task #12587 (Internal Testing): Pentest_CDB - Missing "X-Frame-Options" Header [LOW]
- Please refer sc4.png at Task 12584
- 15:47 Task #12588 (Internal Testing): Pentest_CDB - Missing HTTP "Strict-Transport-Security" Header [LOW]
- Please refer sc4.png at Task 12584
- 15:46 Task #12563 (Internal Testing): Pentest_IBAM - Missing HTTP "Strict-Transport-Security" Header [LOW]
- Please refer sc4.png at Task 12560
- 15:46 Task #12561 (Internal Testing): Pentest_IBAM - Missing "X-Content-Type-Options" Header [LOW]
- Please refer sc4.png at Task 12560
- 15:46 Task #12562 (Internal Testing): Pentest_IBAM - Missing "X-Frame-Options" Header [LOW]
- Please refer sc4.png at Task 12560
- 15:44 Task #12560 (Internal Testing): Pentest_IBAM - Missing "Content-Security-Policy" Header [LOW]
- Staging and Production web server already applied the header.
Pentest was done in app server instead of web server.
... - 15:44 Task #12584 (Internal Testing): Pentest_CDB - Missing "Content-Security-Policy" Header [LOW]
- Staging and Production web server already applied the header.
Pentest was done in app server instead of web server.
... - 11:29 Task #12584 (Development / Work In Progress): Pentest_CDB - Missing "Content-Security-Policy" Hea...
- 11:29 Task #12560 (Development / Work In Progress): Pentest_IBAM - Missing "Content-Security-Policy" He...
- 11:07 Task #12555: Pentest_IBAM - SQL Injection [HIGH]
- Check the parameter SearchApprovable for boolean instead of injecting the parameter as String.
Refer sc3.png - 10:01 1. CDB_Phase 2 & 3 Development Bug #12664 (Work Completed-End life cycle): Rentas_Android - Result is Unsuccessful when add acco...
- Tested & passed
- 09:57 Task #12555 (Development / Work In Progress): Pentest_IBAM - SQL Injection [HIGH]
- 09:55 Task #12576: Pentest_CDB - Using Components with Known Vulnerabilities [HIGH]
- Updates, refer to sc1.png
Bootstrap 4.1.1 > 4.6.1
ckeditor > removed because not used
JasperReport 6.6.0 > 6.18.1
... - 09:53 Task #12558: Pentest_IBAM - Using Components with Known Vulnerabilities [MED]
- Updates, refer to sc2.png
# Bootstrap 4.1.1 > 4.6.1
# jquery-ui 1.10.3 > 1.13.0
December 09, 2021
- 18:00 Task #12558 (Development / Work In Progress): Pentest_IBAM - Using Components with Known Vulnerab...
- 16:17 1. CDB_Phase 2 & 3 Development Bug #12664 (Internal Testing): Rentas_Android - Result is Unsuccessful when add account number to...
- 15:01 1. CDB_Phase 2 & 3 Development Bug #12662 (Work Completed-End life cycle): Rentas_Android - Add validation to Beneficiary ID fie...
- Tested & passed
- 15:00 1. CDB_Phase 2 & 3 Development Bug #12661 (Work Completed-End life cycle): Rentas_Android - Add validation to Recipient Referenc...
- Tested & passed
- 14:56 1. CDB_Phase 2 & 3 Development Bug #12663 (Work Completed-End life cycle): Rentas_Android - Need to click option twice in popup ...
- Tested & passed
- 13:28 1. CDB_Phase 2 & 3 Development Bug #12662 (Internal Testing): Rentas_Android - Add validation to Beneficiary ID field for Busine...
- 13:28 1. CDB_Phase 2 & 3 Development Bug #12661 (Internal Testing): Rentas_Android - Add validation to Recipient Reference & Other Tra...
- 13:27 1. CDB_Phase 2 & 3 Development Bug #12663 (Internal Testing): Rentas_Android - Need to click option twice in popup message for s...
- 13:14 1. CDB_Phase 2 & 3 Development Bug #12660 (Work Completed-End life cycle): Rentas_Web - Add Rentas option at Transfer Type
- Tested & passed
- 13:12 1. CDB_Phase 2 & 3 Development Bug #12538 (Work Completed-End life cycle): Rentas - Changes in IBAM Service Info not reflect in ...
- Tested & passed
- 12:52 Task #12583 (Internal Testing): Pentest_CDB - No Client-Side Session Timeout [LOW]
- SIT deploy on 09/12/2021. Kindly retest
- 10:53 1. CDB_Phase 2 & 3 Development Bug #12666 (Internal Testing): Rentas_Android - "null" is displayed at Transfer Mode field of Ap...
- Hi Syahirah,
After the changes are merged to DEBUG branch and restful is deployed, the test can be started.
Thank y... - 10:49 1. CDB_Phase 2 & 3 Development Bug #12665 (Internal Testing): Rentas_Android - "null" is displayed at Transfer Mode field of Ver...
- Hi Syahirah,
After the changes are merged to DEBUG branch and restful is deployed, the test can be started.
Thank y...
December 07, 2021
- 14:54 1. CDB_Phase 2 & 3 Development Bug #12666 (Work Completed-End life cycle): Rentas_Android - "null" is displayed at Transfer Mod...
- Scenario:
1. Make Rentas transaction from Mobile
2.
i. Approve or Reject transaction from Mobile
ii. Approve or R... - 12:25 1. CDB_Phase 2 & 3 Development Bug #12665 (Work Completed-End life cycle): Rentas_Android - "null" is displayed at Transfer Mode...
- Scenario:
1. Make Rentas transaction from Mobile
2.
i. Verify or Reject transaction from Mobile
ii. Verify or Re... - 11:31 1. CDB_Phase 2 & 3 Development Bug #12664 (Work Completed-End life cycle): Rentas_Android - Result is Unsuccessful when add acco...
- Path: BSNeBIZ Mobile > Payment & Transfer
Scenario:
1. Perform New Rentas transaction
2. At result screen, click... - 10:23 Task #12592 (System Integration Test): Pentest_CDB - TLS/SSL Server Supports The Use of Static Ke...
- In WebSphere we had enforced tls1.2 and disable older tls versions.
- 10:22 Task #12591 (System Integration Test): Pentest_CDB - TLS/SSL Server Is Using Commonly Used Prime ...
- No availavle patch form IBM for the latest TLSv1.2 Ciphers.
- 10:21 Task #12590 (System Integration Test): Pentest_CDB - Diffie-Hellman Group Smaller Than 2048 Bits ...
- No availavle patch form IBM for the latest TLSv1.2 Ciphers.
- 10:21 Task #12589 (System Integration Test): Pentest_CDB - [POTENTIAL] TLS/SSL Timing Side-Channel Atta...
- No availavle patch form IBM for the latest TLSv1.2 Ciphers.
- 10:15 Task #12575 (Development / Work In Progress): Pentest_IBAM - HTTP TRACE Method Enabled[INFO]
- Options is not available on current server as it's WebSphere Application Server. Will perform the fix on web server.
- 10:14 Task #12573 (System Integration Test): Pentest_IBAM - TLS/SSL Server Supports The Use of Static K...
- In WebSphere we had enforced tls1.2 and disable older tls versions.
- 10:14 Task #12572 (System Integration Test): Pentest_IBAM - TLS/SSL Server Is Using Commonly Used Prime...
- No availavle patch form IBM for the latest TLSv1.2 Ciphers.
- 10:13 Task #12571 (System Integration Test): Pentest_IBAM - Diffie-Hellman Group Smaller Than 2048 Bits...
- In WebSphere we had enforced tls1.2 and disable older tls versions.
- 10:12 Task #12570 (System Integration Test): Pentest_IBAM - [POTENTIAL] TLS/SSL Timing Side-Channel Att...
- In WebSphere we had enforced tls1.2 and disable older tls versions.
- 10:06 Task #12557 (System Integration Test): Pentest_IBAM - TLS Cookie Without Secure Flag Set [MED]
- Require retest on Authentication server, as currently app server communicate with auth server using http connection.
- 09:05 1. CDB_Phase 2 & 3 Development Bug #12663 (Development / Work In Progress): Rentas_Android - Need to click option twice in popup...
December 06, 2021
- 19:27 Task #12583 (Development / Work In Progress): Pentest_CDB - No Client-Side Session Timeout [LOW]
- To standardize the end screen with IBAM
- 18:59 Task #12579 (System Integration Test): Pentest_CDB - Username Enumeration [LOW]
- JTM to justify
- 18:58 Task #12577 (System Integration Test): Pentest_CDB - Insecure Direct Object Reference (IDOR) [MED]
- SIT to verify
- 18:53 Task #12566 (System Integration Test): Pentest_IBAM - No Client-Side Session Timeout [LOW]
- Tested and passed in SIT
- 18:49 1. CDB_Phase 2 & 3 Development Bug #12663 (Work Completed-End life cycle): Rentas_Android - Need to click option twice in popup ...
- Path: BSNeBIZ > Payment & Transfer
Scenario:
1. Perform IBG transaction
2. Enter amount which exceeded IBG limit... - 18:26 1. CDB_Phase 2 & 3 Development Bug #12661 (Development / Work In Progress): Rentas_Android - Add validation to Recipient Referen...
- 18:26 1. CDB_Phase 2 & 3 Development Bug #12662 (Development / Work In Progress): Rentas_Android - Add validation to Beneficiary ID fi...
- 17:47 Task #12559 (System Integration Test): Pentest_IBAM - Username Enumeration [LOW]
- Tested and passed on SIT
- 16:38 1. CDB_Phase 2 & 3 Development Bug #12662 (Work Completed-End life cycle): Rentas_Android - Add validation to Beneficiary ID fie...
- Path: BSNeBIZ > Payment & Transfer
Scenario:
1. Perform *New Rentas transaction*/ *Favourite Rentas transaction*
... - 15:32 1. CDB_Phase 2 & 3 Development Bug #12660 (Internal Testing): Rentas_Web - Add Rentas option at Transfer Type
- Issue:
Display shows BSN/DuitNow/IBG without RENTAS
Finding:
RENTAS does not added
Solution:
Added RENTAS in... - 15:31 1. CDB_Phase 2 & 3 Development Bug #12661 (Work Completed-End life cycle): Rentas_Android - Add validation to Recipient Referenc...
- Path: BSNeBIZ > Payment & Transfer
Scenario:
1. Perform New *Rentas transaction*/ *Favourite Rentas transaction*
... - 13:24 1. CDB_Phase 2 & 3 Development Bug #12660 (Work Completed-End life cycle): Rentas_Web - Add Rentas option at Transfer Type
- Path: BSNeBIZ > Transfer & Payment
Scenario:
1. Select Transfer Type
Current:
BSN/DuitNow/IBG
Expected:
B...
December 02, 2021
- 06:18 1. CDB_Phase 2 & 3 Development Task #12636 (Code Review): Rentas_IBAM - To Add Rentas Daily Report & Rentas Exception Report in ...
- Issue:
No option for Rentas Daily Report & Rentas Exception Report
Finding:
No keys and values of Rentas Daily R...
December 01, 2021
- 15:23 1. CDB_Phase 2 & 3 Development Bug #12622 (Work Completed-End life cycle): Rentas_Web - Rentas Fees not deducted & display diffe...
- Tested & passed
- 15:02 1. CDB_Phase 2 & 3 Development Bug #12621 (Work Completed-End life cycle): Rentas_Web - System display error message in Approver...
- Tested & passed
- 10:25 1. CDB_Phase 2 & 3 Development Bug #12623 (Work Completed-End life cycle): Rentas_Web - Beneficiary ID type display as number in...
- Tested & passed
- 09:54 1. CDB_Phase 2 & 3 Development Bug #12623 (Internal Testing): Rentas_Web - Beneficiary ID type display as number in confirmation...
- 09:54 1. CDB_Phase 2 & 3 Development Bug #12622 (Internal Testing): Rentas_Web - Rentas Fees not deducted & display different from IBA...
- 09:47 1. CDB_Phase 2 & 3 Development Bug #12621 (Internal Testing): Rentas_Web - System display error message in Approver screen when ...
- 09:47 1. CDB_Phase 2 & 3 Development Bug #12538 (Internal Testing): Rentas - Changes in IBAM Service Info not reflect in BSNeBIZ
November 30, 2021
- 16:03 Task #12568 (Finished Development): Pentest_IBAM - Insecure Direct Object Reference (IDOR) [LOW]
- Add validation check with deleted group. Add query criteria restriction equals to deleted FALSE filtering to get the ...
- 14:41 Task #12576 (Development / Work In Progress): Pentest_CDB - Using Components with Known Vulnerabi...
- 13:32 Task #12566 (Internal Testing): Pentest_IBAM - No Client-Side Session Timeout [LOW]
- SIT has been deployed. Kindly retest.
- 13:31 Task #12583 (Internal Testing): Pentest_CDB - No Client-Side Session Timeout [LOW]
- SIT has been deployed. Kindly retest.
- 13:29 Task #12577 (Internal Testing): Pentest_CDB - Insecure Direct Object Reference (IDOR) [MED]
- SIT has been deployed. Kindly retest.
Replace url accountNo parameter with invalid account number. Will prompt inv... - 13:26 Task #12559 (Internal Testing): Pentest_IBAM - Username Enumeration [LOW]
- SIT has been deployed. Kindly retest.
- 12:10 Task #12579 (Internal Testing): Pentest_CDB - Username Enumeration [LOW]
- Does not need to be fixed because CDB has 2 users and
default page for invalid user is displayed without an OTP.
November 29, 2021
- 18:04 1. CDB_Phase 2 & 3 Development Task #12636 (Work Completed-End life cycle): Rentas_IBAM - To Add Rentas Daily Report & Rentas Ex...
- Path: IBAM > Corporate Back End > BSNeBIZ Report
Scenario:
1. In Advance Search, select Report Type
Current:
...
November 25, 2021
- 16:13 Task #12583 (Finished Development): Pentest_CDB - No Client-Side Session Timeout [LOW]
- 10:24 1. CDB_Phase 2 & 3 Development Bug #12621 (Code Review): Rentas_Web - System display error message in Approver screen when using...
- Issue:
System display error message in Approver screen when using Organization Specific & Tier Charges
Finding:
... - 09:50 1. CDB_Phase 2 & 3 Development Bug #12392 (Work Completed-End life cycle): Rentas - Popup issue
- Follow test steps to set max limit for ibg.
Tested & passed - 09:34 1. CDB_Phase 2 & 3 Development Bug #12392: Rentas - Popup issue
- HI Sya, please update the status of this issue. Denks
November 24, 2021
- 22:50 1. CDB_Phase 2 & 3 Development Bug #12622 (Code Review): Rentas_Web - Rentas Fees not deducted & display different from IBAM set...
- Issue:
Rentas Fees not deducted & display different from IBAM setting
Finding:
RENTAS transaction takes values f... - 22:35 1. CDB_Phase 2 & 3 Development Bug #12623 (Code Review): Rentas_Web - Beneficiary ID type display as number in confirmation & re...
- Issue:
Beneficiary ID type display as number in confirmation & result page of Verifier & Approver
Finding:
Confi... - 15:27 1. CDB_Phase 2 & 3 Development Bug #12623 (Work Completed-End life cycle): Rentas_Web - Beneficiary ID type display as number in...
- Path: BSNeBIZ > Payment & Transfer
Scenario:
1. Perform Rentas transaction
2. Verify & approve Rentas transacti... - 15:10 1. CDB_Phase 2 & 3 Development Bug #12537 (Work Completed-End life cycle): Rentas_Web - Add validation to Beneficiary ID field f...
- Tested & pass
- 14:24 1. CDB_Phase 2 & 3 Development Bug #12622 (Work Completed-End life cycle): Rentas_Web - Rentas Fees not deducted & display diffe...
- Path: IBAM > CBE > Organization Setup > Online Payment Charges
Scenario:
1. Select Edit button
2. In Interbank T... - 14:01 1. CDB_Phase 2 & 3 Development Bug #12621 (Work Completed-End life cycle): Rentas_Web - System display error message in Approver...
- Path: IBAM > CBE > Organization Setup > Online Payment Charges
Scenario:
1. Select Edit button
2. In Interbank T... - 13:25 Task #12566 (Finished Development): Pentest_IBAM - No Client-Side Session Timeout [LOW]
November 22, 2021
- 15:02 1. CDB_Phase 2 & 3 Development Task #12168 (Work Completed-End life cycle): [Phase_2] Mobile [IOS] : RFP 1.6 - SOCSO
- Merging issue. Tested and passed by Azyan.
November 18, 2021
- 15:59 1. CDB_Phase 2 & 3 Development Bug #12537 (Internal Testing): Rentas_Web - Add validation to Beneficiary ID field for new & favo...
- SIT has been deployed. Kindly retest.
- 11:19 Task #12559 (Finished Development): Pentest_IBAM - Username Enumeration [LOW]
- Update error message username not found standardized to Invalid username or password.
November 17, 2021
- 17:36 Task #12577 (Finished Development): Pentest_CDB - Insecure Direct Object Reference (IDOR) [MED]
- Add validation check insert other account number with user account number.
November 16, 2021
- 09:54 1. CDB_Phase 2 & 3 Development Task #12168 (Development / Work In Progress): [Phase_2] Mobile [IOS] : RFP 1.6 - SOCSO
- Preprod version -
System display blank details at authorization.
November 12, 2021
- 10:02 1. CDB_Phase 2 & 3 Development Enhancement #12323: UAT_Card - IBAM - To include Corporate Card in BSNeBIZ Report
- Tested & passed
- 10:01 1. CDB_Phase 2 & 3 Development Enhancement #12323 (User Acceptance Test): UAT_Card - IBAM - To include Corporate Card in BSNeBIZ...
Also available in: Atom