Insecure HTTP Header Setting
Insecure HTTP Header Setting
Description
Insecure Header Setting:
- Content Security Policy
- Cookie
- Cross-Origin Resource Sharing
- HTTP Public Key Pinning
- Redirection
- Referrer Policy
- Subresource Integrity
- X-Content-Type-Options
- X-Frame-Options
- X-XSS-Protection
Recommendation
- Content Security Policy
- Cookie
- Cross-Origin Resource Sharing
- HTTP Public Key Pinning
- Redirection
- Referrer Policy
- Subresource Integrity
- X-Content-Type-Options
- X-Frame-Options
- X-XSS-Protection