{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,2,18]],"date-time":"2026-02-18T03:39:16Z","timestamp":1771385956142,"version":"3.50.1"},"publisher-location":"Singapore","reference-count":18,"publisher":"Springer Nature Singapore","isbn-type":[{"value":"9789819986637","type":"print"},{"value":"9789819986644","type":"electronic"}],"license":[{"start":{"date-parts":[[2023,12,15]],"date-time":"2023-12-15T00:00:00Z","timestamp":1702598400000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"},{"start":{"date-parts":[[2023,12,15]],"date-time":"2023-12-15T00:00:00Z","timestamp":1702598400000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2024]]},"DOI":"10.1007\/978-981-99-8664-4_16","type":"book-chapter","created":{"date-parts":[[2023,12,14]],"date-time":"2023-12-14T06:05:13Z","timestamp":1702533913000},"page":"279-297","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":3,"title":["Vulnerability Report Analysis and\u00a0Vulnerability Reproduction for\u00a0Web Applications"],"prefix":"10.1007","author":[{"ORCID":"https:\/\/orcid.org\/0000-0003-4860-1553","authenticated-orcid":false,"given":"Weiwei","family":"Wang","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Zidong","family":"Li","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Feng","family":"You","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-6024-4010","authenticated-orcid":false,"given":"Ruilian","family":"Zhao","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2023,12,15]]},"reference":[{"key":"16_CR1","doi-asserted-by":"publisher","first-page":"98","DOI":"10.1016\/j.cosrev.2019.07.001","volume":"33","author":"T Ahmad","year":"2019","unstructured":"Ahmad, T., Iqbal, J., Ashraf, A., Truscan, D., Porres, I.: Model-based testing using UML activity diagrams: a systematic mapping study. Comput. Sci. Rev. 33, 98\u2013112 (2019)","journal-title":"Comput. Sci. Rev."},{"key":"16_CR2","doi-asserted-by":"crossref","unstructured":"Bhuiyan, F.A., Shakya, R., Rahman, A.: Can we use software bug reports to identify vulnerability discovery strategies? In: Proceedings of the 7th Symposium on Hot Topics in the Science of Security, pp. 1\u201310 (2020)","DOI":"10.1145\/3384217.3385618"},{"key":"16_CR3","doi-asserted-by":"publisher","first-page":"28471","DOI":"10.1109\/ACCESS.2021.3058067","volume":"9","author":"FA Bhuiyan","year":"2021","unstructured":"Bhuiyan, F.A., Sharif, M.B., Rahman, A.: Security bug report usage for software vulnerability research: a systematic mapping study. IEEE Access 9, 28471\u201328495 (2021)","journal-title":"IEEE Access"},{"key":"16_CR4","unstructured":"(2022). https:\/\/portswigger.net\/burp"},{"key":"16_CR5","unstructured":"(2022). https:\/\/www.cnvd.org.cn"},{"key":"16_CR6","unstructured":"Dong, Y., Guo, W., Chen, Y., Xing, X., Zhang, Y., Wang, G.: Towards the detection of inconsistencies in public security vulnerability reports. In: 28th USENIX Security Symposium (USENIX Security 2019), pp. 869\u2013885 (2019)"},{"key":"16_CR7","unstructured":"(2022). https:\/\/www.exploit-db.com"},{"key":"16_CR8","doi-asserted-by":"crossref","unstructured":"Fazzini, M., Prammer, M., d\u2019Amorim, M., Orso, A.: Automatically translating bug reports into test cases for mobile apps. In: Software Testing and Analysis (2018)","DOI":"10.1145\/3213846.3213869"},{"key":"16_CR9","unstructured":"Feng, X., et al.: Understanding and securing device vulnerabilities through automated bug report analysis. In: SEC 2019: Proceedings of the 28th USENIX Conference on Security Symposium (2019)"},{"issue":"10","key":"16_CR10","first-page":"52","volume":"40","author":"Y Jin","year":"2021","unstructured":"Jin, Y.: Design of Japanese computer aided instruction system based on natural language processing. Tech. Autom. Appl. 40(10), 52\u201355 (2021)","journal-title":"Tech. Autom. Appl."},{"issue":"4","key":"16_CR11","doi-asserted-by":"publisher","DOI":"10.1002\/stvr.1665","volume":"28","author":"M Leotta","year":"2018","unstructured":"Leotta, M., Stocco, A., Ricca, F., Tonella, P.: Pesto: automated migration of dom-based web tests towards the visual approach. Softw. Test. Verif. Reliabil. 28(4), e1665 (2018)","journal-title":"Softw. Test. Verif. Reliabil."},{"key":"16_CR12","doi-asserted-by":"crossref","unstructured":"Li, R., Zhang, X., Li, C., et al.: Keyword extraction method for machine reading comprehension based on natural language processing. In: Journal of Physics: Conference Series, vol. 1955, no. 1, p. 012072 (2021)","DOI":"10.1088\/1742-6596\/1955\/1\/012072"},{"key":"16_CR13","unstructured":"Mu, D., et al.: Understanding the reproducibility of crowd-reported security vulnerabilities. In: 27th USENIX Security Symposium (USENIX Security 2018), pp. 919\u2013936 (2018)"},{"key":"16_CR14","unstructured":"Ricca, F., Tonella, P.: Testing Processes of Web Applications. J. C. Baltzer AG Science Publishers (2002)"},{"key":"16_CR15","unstructured":"(2022). https:\/\/github.com\/explosion\/spaCy"},{"key":"16_CR16","unstructured":"(2022). https:\/\/github.com\/stanfordnlp\/stanza"},{"key":"16_CR17","unstructured":"(2022). https:\/\/github.com\/danielfrg\/word2vec"},{"issue":"10","key":"16_CR18","first-page":"77","volume":"23","author":"X Yang","year":"2021","unstructured":"Yang, X., Qian, F., Liu, G.: Analysis of software automatic testing methods. China New Telecommun. 23(10), 77\u201378 (2021)","journal-title":"China New Telecommun."}],"container-title":["Lecture Notes in Computer Science","Dependable Software Engineering. Theories, Tools, and Applications"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/978-981-99-8664-4_16","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2023,12,14]],"date-time":"2023-12-14T06:08:36Z","timestamp":1702534116000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1007\/978-981-99-8664-4_16"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2023,12,15]]},"ISBN":["9789819986637","9789819986644"],"references-count":18,"URL":"https:\/\/doi.org\/10.1007\/978-981-99-8664-4_16","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"value":"0302-9743","type":"print"},{"value":"1611-3349","type":"electronic"}],"subject":[],"published":{"date-parts":[[2023,12,15]]},"assertion":[{"value":"15 December 2023","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}},{"value":"SETTA","order":1,"name":"conference_acronym","label":"Conference Acronym","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"International Symposium on Dependable Software Engineering: Theories, Tools, and Applications","order":2,"name":"conference_name","label":"Conference Name","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Nanjing","order":3,"name":"conference_city","label":"Conference City","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"China","order":4,"name":"conference_country","label":"Conference Country","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"2023","order":5,"name":"conference_year","label":"Conference Year","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"27 November 2023","order":7,"name":"conference_start_date","label":"Conference Start Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"29 November 2023","order":8,"name":"conference_end_date","label":"Conference End Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"9","order":9,"name":"conference_number","label":"Conference Number","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"setta2023","order":10,"name":"conference_id","label":"Conference ID","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"https:\/\/lcs.ios.ac.cn\/setta2023\/","order":11,"name":"conference_url","label":"Conference URL","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Single-blind","order":1,"name":"type","label":"Type","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"Easychair","order":2,"name":"conference_management_system","label":"Conference Management System","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"78","order":3,"name":"number_of_submissions_sent_for_review","label":"Number of Submissions Sent for Review","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"24","order":4,"name":"number_of_full_papers_accepted","label":"Number of Full Papers Accepted","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"0","order":5,"name":"number_of_short_papers_accepted","label":"Number of Short Papers Accepted","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"31% - The value is computed by the equation \"Number of Full Papers Accepted \/ Number of Submissions Sent for Review * 100\" and then rounded to a whole number.","order":6,"name":"acceptance_rate_of_full_papers","label":"Acceptance Rate of Full Papers","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"3","order":7,"name":"average_number_of_reviews_per_paper","label":"Average Number of Reviews per Paper","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"7","order":8,"name":"average_number_of_papers_per_reviewer","label":"Average Number of Papers per Reviewer","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"Yes","order":9,"name":"external_reviewers_involved","label":"External Reviewers Involved","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}}]}}