A website is vulnerable to parsing inline styles from compromised website resources. The Content-Security-Policy header can be used to restrict a browser to approved resources -- like Javascript and CSS -- from a whitelist. The X-Content-Security-Policy header is required in Internet Explorer 10 and ...
From http://ift.tt/2mLZJ5h
A website is vulnerable to parsing inline styles from compromised website resources. The Content-Security-Policy header can be used to restrict a browser to approved resources -- like Javascript and CSS -- from a whitelist. The X-Content-Security-Policy header is required in Internet Explorer 10 and ...
No comments:
Post a Comment
Kindly leave your comments here but the author reserves the right to include or exclude comments where deemed necessary.