AnsweredAssumed Answered

Content-Security-Policy HTTP Security Header Not Detected

Question asked by 橋口 純紀 on Dec 17, 2018
Latest reply on Dec 18, 2018 by derekv

I have confirmed the following vulnerability by penatration test.

QID : 48001
Category: Information gathering

 

RESULTS:

 X-Frame-Options HTTP Header missing on port 443.

 GET / HTTP/1.1

 Host: m.hrblock.com


I want to know more information about this vuln.

Are there any additional details that you know?  The results for this QID are not very descriptive.

 

Outcomes