Most common High Risk security issues in the last 30 days
| Issue Type | Category | Percentage |
|---|---|---|
| Hash Disclosure - Mac OSX salted SHA-1 | High | 0.05 |
| Viewstate without MAC Signature (Unsure) | High | 0.02 |
| Anti-CSRF Tokens Check | High | 0.01 |
| Vulnerable Version of the Library 'mustache.js' Found | High | < 0.01 |
| Open Redirect | High | < 0.01 |
Most common Medium Risk security issues in the last 30 days
| Issue Type | Category | Percentage |
|---|---|---|
| Reverse Tabnabbing | Medium | 2.06 |
| Content Security Policy (CSP) Header Not Set | Medium | 1.81 |
| Vulnerable Version of the Library 'jquery' Found | Medium | 1.18 |
| CSP: Wildcard Directive | Medium | 0.88 |
| X-Frame-Options Header Not Set | Medium | 0.52 |
Most common Low Risk security issues in the last 30 days
| Issue Type | Category | Percentage |
|---|---|---|
| Cross-Domain JavaScript Source File Inclusion | Low | 12.30 |
| Absence of Anti-CSRF Tokens | Low | 11.03 |
| Cookie No HttpOnly Flag | Low | 2.53 |
| Cookie Without SameSite Attribute | Low | 2.38 |
| Cookie Without Secure Flag | Low | 2.25 |
Most common Info Risk security issues in the last 30 days
| Issue Type | Category | Percentage |
|---|---|---|
| Timestamp Disclosure - Unix | Informational | 50.99 |
| Information Disclosure - Suspicious Comments | Informational | 2.05 |
| User Controllable HTML Element Attribute (Potential XSS) | Informational | 1.48 |
| Retrieved from Cache | Informational | 0.49 |
| Loosely Scoped Cookie | Informational | 0.24 |