Skip to content

Insecure HTTP Header Setting

Insecure HTTP Header Setting

Description

Insecure Header Setting:

  • Content Security Policy
  • Cookie
  • Cross-Origin Resource Sharing
  • HTTP Public Key Pinning
  • Redirection
  • Referrer Policy
  • Subresource Integrity
  • X-Content-Type-Options
  • X-Frame-Options
  • X-XSS-Protection

Recommendation

  • Content Security Policy
  • Cookie
  • Cross-Origin Resource Sharing
  • HTTP Public Key Pinning
  • Redirection
  • Referrer Policy
  • Subresource Integrity
  • X-Content-Type-Options
  • X-Frame-Options
  • X-XSS-Protection

Categories