vulnapi Cache control response headers exists but authentication is performed

Cache control response headers exists but authentication is performed

Open emmanuelgautier opened this issue 1 year ago • 0 comments

Cache control response header public should not be set when an authentication is performed. It increase risk to put not shareable (personal, confidential, ...) data into a shared cache.

Cache-Control directives documentation

Oct 03 '24 21:10 emmanuelgautier

vulnapi vulnapi copied to clipboard

Cache control response headers exists but authentication is performed

vulnapi
vulnapi copied to clipboard