Content-Security-Policy-Report-Only Cannot Be Declared Between META Tags
Severity: Information
Summary
Content-Security-Policy-Report-Only cannot be declared between META tags.
Actions To Take
-
If you want to use one of the CSP in report only mode, you should declare it in response headers.
Classifications
OWASP 2013-A5, OWASP 2017-A6
Vulnerability Index
You can search and find all vulnerabilities
Select Category
OR
Search Vulnerability
