Welcome to Scribd!

Affected Items: Acunetix Security Audit

Uploaded by

0% found this document useful (0 votes)

8 views4 pages

The security audit found 1 informational alert regarding Content Security Policy (CSP) not being implemented on the site alterx.com. CSP adds an extra layer of security against cross-site scripting and data injection attacks. The report recommends implementing CSP by adding a Content-Security-Policy header defining allowed origins and resources. No vulnerabilities were discovered otherwise.

Original Description:

The expression 8x

Original Title

20200929_Affected_Items_https_alterx_com

Copyright

Available Formats

PDF, TXT or read online from Scribd

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Report this Document

Copyright:

Available Formats

Download as PDF, TXT or read online from Scribd

Flag for inappropriate content

Download as pdf or txt

0% found this document useful (0 votes)

8 views4 pages

Affected Items: Acunetix Security Audit

Uploaded by

muhammad9julfikar9hy

Copyright:

Available Formats

Download as PDF, TXT or read online from Scribd

Flag for inappropriate content

Download as pdf or txt

Jump to Page

You are on page 1of 4

Search inside document

Affected Items

Report
Acunetix Security Audit

29 September 2020

Generated by Acunetix
Scan of alterx.com
Scan details
Scan information
Start time 29/09/2020, 10:14:07
Start url https://alterx.com
Host alterx.com
Scan time 5 minutes, 6 seconds
Profile Full Scan
Server information nginx/1.16.0
Responsive True
Server OS Unknown

Threat level

Acunetix Threat Level 0

No vulnerabilities have been discovered by the scanner.

Alerts distribution

Total alerts found 1

High 0
Medium 0
Low 0
Informational 1
Affected items
Web Server
Alert group Content Security Policy (CSP) not implemented
Severity Informational
Content Security Policy (CSP) is an added layer of security that helps to detect and mitigate
certain types of attacks, including Cross Site Scripting (XSS) and data injection attacks.

Content Security Policy (CSP) can be implemented by adding a Content-Security-Policy

header. The value of this header is a string containing the policy directives describing your
Content Security Policy. To implement CSP, you should define lists of allowed origins for the
all of the types of resources that your site utilizes. For example, if you have a simple site that
needs to load scripts, stylesheets, and images hosted locally, as well as from the jQuery
library from their CDN, the CSP header could look like the following:

Description
Content-Security-Policy:

default-src 'self';

script-src 'self' https://code.jquery.com;

It was detected that your web application doesn't implement Content Security Policy (CSP)
as the CSP header is missing from the response. It's recommended to implement Content
Security Policy (CSP) into your web application.
It's recommended to implement Content Security Policy (CSP) into your web application.
Configuring Content Security Policy involves adding the Content-Security-Policy HTTP
Recommendations
header to a web page and giving it values to control resources the user agent is allowed to
load for that page.
Alert variants
Details Not available in the free trial
Not available in the free trial
Scanned items (coverage report)
http://alterx.com/

Cloud Penetration Testing Playbook
Document19 pages
Cloud Penetration Testing Playbook
dc1wh
100% (1)
Report
Document17 pages
Report
Jay Soni
No ratings yet
Content Security Policy (CSP) - HTTP - MDN
Document26 pages
Content Security Policy (CSP) - HTTP - MDN
tester checker
No ratings yet
Scan Meteored Acunetix
Document5 pages
Scan Meteored Acunetix
Alejandro Antonio Loyola Ruiz
No ratings yet
PentestTools WebsiteScanner Report
Document7 pages
PentestTools WebsiteScanner Report
Mauricio Cerrato
No ratings yet
PentestTools WebsiteScanner Report
Document5 pages
PentestTools WebsiteScanner Report
mahaekshop
No ratings yet
PentestTools WebsiteScanner Report
Document5 pages
PentestTools WebsiteScanner Report
Sunil Kumar Sharma
No ratings yet
PentestTools WebsiteScanner Report
Document5 pages
PentestTools WebsiteScanner Report
miguel
No ratings yet
HTTP Security Headers With Nginx
Document8 pages
HTTP Security Headers With Nginx
creative.ayan
No ratings yet
HTTP Header Security (Slide)
Document27 pages
HTTP Header Security (Slide)
Dan Vollek
No ratings yet
Dukaanye Pentest Report
Document5 pages
Dukaanye Pentest Report
mahaekshop
No ratings yet
PentestTools WebsiteScanner Report
Document5 pages
PentestTools WebsiteScanner Report
ferneymartinezcastro2019
No ratings yet
PentestTools WebsiteScanner Report
Document5 pages
PentestTools WebsiteScanner Report
rayjoneske
No ratings yet
Website Vulnerability Scanner Report (Light)
Document6 pages
Website Vulnerability Scanner Report (Light)
Stevi Nangon
No ratings yet
Website Vulnerability Scanner Report (Light)
Document5 pages
Website Vulnerability Scanner Report (Light)
Ilija Dodevski
No ratings yet
PentestTools WebsiteScanner Report
Document5 pages
PentestTools WebsiteScanner Report
rp4403682
No ratings yet
Checkmarx Open Source Analysis (OSA)
Document2 pages
Checkmarx Open Source Analysis (OSA)
maria diana
No ratings yet
2022 12 27 ZAP Report
Document7 pages
2022 12 27 ZAP Report
RandomG05
No ratings yet
OWASP SCP Quick Reference Guide - en-US
Document17 pages
OWASP SCP Quick Reference Guide - en-US
helo
No ratings yet
Website Vulnerability Scanner Report (Light)
Document6 pages
Website Vulnerability Scanner Report (Light)
alex681219
No ratings yet
Content Security Policy
Document103 pages
Content Security Policy
prince tega
100% (1)
Security Pillar: AWS Well-Architected Framework
Document46 pages
Security Pillar: AWS Well-Architected Framework
arunchockan
No ratings yet
Day 4 AWS Automation, Architecture and Containerization
Document3 pages
Day 4 AWS Automation, Architecture and Containerization
Cloud training
No ratings yet
Secure Web Page Scripting
Document2 pages
Secure Web Page Scripting
Lanre Banjo
No ratings yet
OWASP SCP Quick Reference Guide v21
Document18 pages
OWASP SCP Quick Reference Guide v21
Pradeep Davuluri
No ratings yet
33小铺扫描附件
Document9 pages
33小铺扫描附件
ni ko
No ratings yet
List of Aws Controls You Can Test For Security Governance:: Saas-Based Web Application and Api Penetration Testing
Document3 pages
List of Aws Controls You Can Test For Security Governance:: Saas-Based Web Application and Api Penetration Testing
Manoj Kumar
No ratings yet
The Internet of Things On AWS
Document8 pages
The Internet of Things On AWS
Fazlee Kan
No ratings yet
Project 4 Secure Web Application Development
Document11 pages
Project 4 Secure Web Application Development
rutiksankapal21
No ratings yet
Questions
Document10 pages
Questions
leela 08
No ratings yet
AWS Manual
Document53 pages
AWS Manual
Teo
No ratings yet
v11 Product Manual
Document47 pages
v11 Product Manual
Nolberto Zabala Quiroz
No ratings yet
Webapplication Security
Document2 pages
Webapplication Security
Sukbeer Singh
No ratings yet
HTTP Security Header
Document7 pages
HTTP Security Header
Jim
No ratings yet
Security Vulnerabilities
Document16 pages
Security Vulnerabilities
PRADEEP SELVENTHIRAN
No ratings yet
Defending API
Document65 pages
Defending API
ctfftwuser12
No ratings yet
Container Security Best Practices Cheat Sheet
Document9 pages
Container Security Best Practices Cheat Sheet
mcskumar
No ratings yet
FIT5057 Assignment 1 - Version V 1a Final - Sem 1 2023
Document8 pages
FIT5057 Assignment 1 - Version V 1a Final - Sem 1 2023
Vincent Low
No ratings yet
OWASP SCP Quick Reference Guide v2
Document17 pages
OWASP SCP Quick Reference Guide v2
Lika ost
No ratings yet
Content Security Policy: Directives of CSP
Document10 pages
Content Security Policy: Directives of CSP
Мr. X Gaming
No ratings yet
Application Pipeline Protection - SANS and AWS Marketplace Whitepaper PDF
Document18 pages
Application Pipeline Protection - SANS and AWS Marketplace Whitepaper PDF
cubodebits
No ratings yet
Ci CD Pipeline Security Best Practices
Document13 pages
Ci CD Pipeline Security Best Practices
Լարիսա Ղազարյան
No ratings yet
OWASP SCP Quick Reference Guide v1
Document12 pages
OWASP SCP Quick Reference Guide v1
shimaas
No ratings yet
Can You Describe Your Experience Wi
Document5 pages
Can You Describe Your Experience Wi
demy2014
No ratings yet
QSC20 VMDR Lab Tutorial Supplement
Document34 pages
QSC20 VMDR Lab Tutorial Supplement
Hussain Abbas
No ratings yet
Security Configuration Assessment (SCA) : Getting Started Guide
Document5 pages
Security Configuration Assessment (SCA) : Getting Started Guide
jawwad joe
No ratings yet
Revision Notes
Document4 pages
Revision Notes
Sam Chan
No ratings yet
AWS DevOps Engineer Professional Certification Guide: Hands-on guide to understand, analyze, and solve 150 scenario-based questions (English Edition)
From Everand
AWS DevOps Engineer Professional Certification Guide: Hands-on guide to understand, analyze, and solve 150 scenario-based questions (English Edition)
Sumit Kapoor
No ratings yet
Creating A Baseline: Monitoring Overview
Document30 pages
Creating A Baseline: Monitoring Overview
Fazlee Kan
No ratings yet
Owasp Modsecurity Core Rule Set (CRS) Project
Document52 pages
Owasp Modsecurity Core Rule Set (CRS) Project
Alejandro Parente
No ratings yet
Padding Oracle Test
Document4 pages
Padding Oracle Test
c_unlocker
No ratings yet
Web Application Security Standards and Practices PDF
Document14 pages
Web Application Security Standards and Practices PDF
yshprasd
No ratings yet
Azure Docu PDF
Document349 pages
Azure Docu PDF
Jerome Macaraig Tolentino
No ratings yet
Formal Reasoning About The Security of Amazon Web Services
Document9 pages
Formal Reasoning About The Security of Amazon Web Services
PrabuSelvaTamil
No ratings yet
CxSCA Datasheet-1
Document2 pages
CxSCA Datasheet-1
maria diana
No ratings yet
Chandan Minor Project
Document26 pages
Chandan Minor Project
Samar Jeet
No ratings yet
Security Scanner Report PDF
Document2 pages
Security Scanner Report PDF
EL Picasesos TE VA Picar
No ratings yet
PentestTools WebsiteScanner Report
Document6 pages
PentestTools WebsiteScanner Report
MALK
No ratings yet
Complete Guide To Enterprise Container Security: Released: February 20, 2018
Document24 pages
Complete Guide To Enterprise Container Security: Released: February 20, 2018
Victor
No ratings yet
Task Sheet 2
Document21 pages
Task Sheet 2
Syed Salman
No ratings yet
Desene Anim. Hns Si GR
Document26 pages
Desene Anim. Hns Si GR
Lenuta Hreapca
No ratings yet
Company Profile Tribun Bogor - Update Mei 2023
Document26 pages
Company Profile Tribun Bogor - Update Mei 2023
Rio Adhitya Cesart
No ratings yet
Lec08. Jquery and AJAX Introduction
Document64 pages
Lec08. Jquery and AJAX Introduction
Nixon Peralta
No ratings yet
Web Security: Prepared By, R.S.Rampriya/Cse
Document46 pages
Web Security: Prepared By, R.S.Rampriya/Cse
Vishalini Chinnathurai
No ratings yet
Web Analytics Syllabus
Document2 pages
Web Analytics Syllabus
Ajith Kumar
No ratings yet
Frontend Developer
Document3 pages
Frontend Developer
Irshad Akhter
No ratings yet
HTML Offers Web Authors Three Ways For Specifying Lists of Information
Document5 pages
HTML Offers Web Authors Three Ways For Specifying Lists of Information
Michael Wells
No ratings yet
Styles Introduction
Document117 pages
Styles Introduction
aamir khan
No ratings yet
Cascading Style Sheets (CSS)
Document373 pages
Cascading Style Sheets (CSS)
Gilbert MUHIRE
No ratings yet
Cod Font Tatto For Women
Document100 pages
Cod Font Tatto For Women
Salvador Reyes
No ratings yet
Scrib CH
Document22 pages
Scrib CH
Salvador Reyes
No ratings yet
Savings Account - 25480100018370 Dharm Singh So Shiv Ram
Document8 pages
Savings Account - 25480100018370 Dharm Singh So Shiv Ram
Parveen Saini
No ratings yet
Damaged-Car-Removal Serp Au 2022-06-13
Document4 pages
Damaged-Car-Removal Serp Au 2022-06-13
ALex
No ratings yet
A Technical Report On HTML, CSS, Javascript Bootstrap, Php/Mysql
Document11 pages
A Technical Report On HTML, CSS, Javascript Bootstrap, Php/Mysql
Raja Zaka Ullah
No ratings yet
GTmetrix Report WWW - Edunext.co 20230831T173454 4UwTlkRu
Document6 pages
GTmetrix Report WWW - Edunext.co 20230831T173454 4UwTlkRu
Harrison Laverde
No ratings yet
The Best Tools For Web Forms Development (ASP
Document11 pages
The Best Tools For Web Forms Development (ASP
Active88
No ratings yet
Materials and Books
Document1 page
Materials and Books
ram k
No ratings yet
Site Audit: Issues: Generated On October 3, 2022
Document13 pages
Site Audit: Issues: Generated On October 3, 2022
Manaswini Rao Kaki
No ratings yet
Pinkelephant
Document40 pages
Pinkelephant
Raniel Eran Agellon
No ratings yet
Chap7 HTML Tables
Document38 pages
Chap7 HTML Tables
Has Liza
No ratings yet
Top 50 Angularjs Interview Questions and Answers
Document83 pages
Top 50 Angularjs Interview Questions and Answers
vijaykumarsingana
No ratings yet
Certificate: Inderprastha Engineering College 63, Site - Iv Surya Nagar Flyover Road Sahibabad, Ghaziabad
Document45 pages
Certificate: Inderprastha Engineering College 63, Site - Iv Surya Nagar Flyover Road Sahibabad, Ghaziabad
Vèdãñt Míshrã
No ratings yet
Sharma 2018
Document4 pages
Sharma 2018
juliopanz
No ratings yet
Summer Internship Report
Document38 pages
Summer Internship Report
Amit Yadav
No ratings yet
HTML5 and CSS3 Illustrated Complete 2nd Edition Vodnik Solutions Manual 1
Document12 pages
HTML5 and CSS3 Illustrated Complete 2nd Edition Vodnik Solutions Manual 1
barbara
100% (57)
What Does HTTP Stand For
Document2 pages
What Does HTTP Stand For
Pappu Khan
No ratings yet
TVL Comprog11 Q1 M10
Document19 pages
TVL Comprog11 Q1 M10
Sherry-Ann Tulauan
No ratings yet
Mini Project Synopsis: On Web Development
Document11 pages
Mini Project Synopsis: On Web Development
Kalam Singh
100% (1)
Khabai Tech Web Portfolio
Document50 pages
Khabai Tech Web Portfolio
Harshit R
No ratings yet
CAD101 Introduction To Web Development With HTML 5 Css3 and JavaScript
Document1 page
CAD101 Introduction To Web Development With HTML 5 Css3 and JavaScript
Rachel Cruz
No ratings yet