pwning-juice-shop
pwning-juice-shop copied to clipboard

Published 20 hours ago •

Reame
Issues

ZAP Scan Baseline Report

Open github-actions[bot] opened this issue 4 months ago • 0 comments

Site: https://pwning.owasp-juice.shop New Alerts
- Content Security Policy (CSP) Header Not Set [10038] total: 11:
- Missing Anti-clickjacking Header [10020] total: 11:
- Dangerous JS Functions [10110] total: 2:
  - https://pwning.owasp-juice.shop/_/js/vendor/highlight.js
  - https://pwning.owasp-juice.shop/search-index.js
- Permissions Policy Header Not Set [10063] total: 11:
- Server Leaks Version Information via "Server" HTTP Response Header Field [10036] total: 11:
- Strict-Transport-Security Header Not Set [10035] total: 11:
- X-Content-Type-Options Header Missing [10021] total: 11:
- Re-examine Cache-control Directives [10015] total: 11:
- Sec-Fetch-Dest Header is Missing [90005] total: 3:
- Sec-Fetch-Mode Header is Missing [90005] total: 3:
- Sec-Fetch-Site Header is Missing [90005] total: 3:
- Sec-Fetch-User Header is Missing [90005] total: 3:
- Storable and Cacheable Content [10049] total: 11:
Ignored Alerts
- Application Error Disclosure [90022] total: 4:
- Source Code Disclosure - SQL [10099] total: 6:
- Information Disclosure - Debug Error Messages [10023] total: 4:
- Private IP Disclosure [2] total: 5:
- Base64 Disclosure [10094] total: 12:
- Information Disclosure - Suspicious Comments [10027] total: 7:
- Modern Web Application [10109] total: 12:

View the following link to download the report. RunnerID:8032599005

Feb 24 '24 19:02 github-actions[bot]