No Script Block Detected with the Hash Value Declared in Content Security Policy (CSP) | Netsparker

Summary

The hash value in the CSP directive does not match with any hash value of the script blocks in the page.

Classifications

OWASP 2013-A5, OWASP 2017-A6

Further Reading

Content Security Policy (CSP) Explained

Netsparker Security Insights

Vulnerability Index

You can search and find all vulnerabilities

Select Category

OR

Search Vulnerability

Tags

CSP

Related Vulnerabilities

Dead accurate, fast & easy-to-use Web Application Security Scanner

GET A DEMO