I am getting 2 false positives for LDAP Injection and was hoping to help the scanner out instead of marking them. Does anyone happen to know what the expected response should be so that it isn't triggered. I tried returning 400 when it's syntax is found in a query but unfortunately it didn't help. I took a look in the FPR and nothing is in the trigger box.