ZAP Scan Baseline Report
Opened this issue · 1 comments
github-actions commented
- Site: https://appservicekorea.azurewebsites.net
New Alerts- Content Security Policy (CSP) Header Not Set [10038] total: 6:
- Missing Anti-clickjacking Header [10020] total: 4:
- Absence of Anti-CSRF Tokens [10202] total: 2:
- Application Error Disclosure [90022] total: 1:
- Cookie with SameSite Attribute None [10054] total: 2:
- Cookie without SameSite Attribute [10054] total: 2:
- Cross-Domain JavaScript Source File Inclusion [10017] total: 17:
- Incomplete or No Cache-control Header Set [10015] total: 5:
- Server Leaks Information via "X-Powered-By" HTTP Response Header Field(s) [10037] total: 11:
- Server Leaks Version Information via "Server" HTTP Response Header Field [10036] total: 11:
- Strict-Transport-Security Header Not Set [10035] total: 1:
- Timestamp Disclosure - Unix [10096] total: 8:
- X-Content-Type-Options Header Missing [10021] total: 11:
- https://appservicekorea.azurewebsites.net/
- https://appservicekorea.azurewebsites.net/css/site.css?v=AKvNjO3dCPPS0eSU1Ez8T2wI280i08yGycV9ndytL-c
- https://appservicekorea.azurewebsites.net/DapperV6.styles.css?v=ldTiq_53sg5KHL5KmCfTplI3CDz9s_MBfmiDtaSO2QI
- https://appservicekorea.azurewebsites.net/Home/About
- https://appservicekorea.azurewebsites.net/Home/Customer
- ..
- Information Disclosure - Suspicious Comments [10027] total: 4:
- Modern Web Application [10109] total: 2:
View the following link to download the report.
RunnerID:1738751894
github-actions commented
- Site: https://appservicekorea.azurewebsites.net
Resolved Alerts- Application Error Disclosure [90022] total: 1:
View the following link to download the report.
RunnerID:1856380659