Support "2.3 Security Headers" of MVSP #1690

cmlh · 2023-07-13T00:30:05Z

cmlh
Jul 13, 2023

"2.3 Security Headers" of MVSP is reproduced below:

2.3 Security Headers
Apply appropriate security headers to reduce the application attack surface and limit post exploitation:

* Set a minimally permissive Content Security Policy
* Limit the ability to iframe sensitive application content where appropriate

The parent of this [MVSP] issue is #1151.

cmlh · 2023-07-13T00:48:35Z

cmlh
Jul 13, 2023
Author

Changes to ASVS 5.0 Requirements specific to CSP documented within #1406

ASVS 5.0 Requirement for the iFrame sandbox attribute alluded to within V5.2 Sanitization and Sandboxing

0 replies

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Uh oh!

Support "2.3 Security Headers" of MVSP #1690

Uh oh!

{{title}}

Uh oh!

Replies: 1 comment

Uh oh!

{{title}}

Uh oh!

Uh oh!

{{editor}}'s edit

{{editor}}'s edit

Uh oh!

Select a reply

Uh oh!

Uh oh!

Support "2.3 Security Headers" of MVSP #1690

Uh oh!

cmlh Jul 13, 2023

Replies: 1 comment

Uh oh!

Uh oh!

cmlh Jul 13, 2023 Author

cmlh
Jul 13, 2023

cmlh
Jul 13, 2023
Author