Scheme URI Detected in Content Security Policy (CSP) Directive
Severity: Information
Summary #
Invicti detected that scheme URI was used in CSP directive.
Impact #
This means that scheme URI in script-src (http: or https:) allows the execution of unsafe scripts.
Remediation #
Replace the scheme URI with the domain that you trust.
Classifications #
ISO27001-A.14.2.5
Further Reading #
Vulnerability Index
You can search and find all vulnerabilities
Select Category
OR
Search Vulnerability
Tags
