webhook icon indicating copy to clipboard operation
webhook copied to clipboard

Published 20 hours ago verified publisher icon adnanh

Headers from CLI not sent on root site handler

Open SJebasingh opened this issue 4 years ago • 4 comments

How to use webhook -header to enable XSS protection

SJebasingh avatar Aug 25 '21 13:08 SJebasingh

I tried to use as below and not working.

Webhook.exe - port 90 - header X-Frame-Options=SAMEORIGIN

When I tried to get headers using curl I'm not able to get those headers. I want to fix vulnerabilities.

Curl -lkL --verbose http://localhost:90

SJebasingh avatar Aug 25 '21 13:08 SJebasingh

Does it work if you use the response-headers setting in the config?

moorereason avatar Aug 25 '21 14:08 moorereason

Yes. It works however security scan is run on port and ip as below and not on with added hooks.

http://localhost:90

SJebasingh avatar Aug 25 '21 14:08 SJebasingh

BTW, a fix for this issue has been merged into the development branch.

moorereason avatar Sep 03 '21 12:09 moorereason