Most common High Risk security issues in the last 30 days
Issue Type | Category | Percentage |
---|---|---|
SQL Injection - Hypersonic SQL - Time Based | High | 0.16 |
SQL Injection - MySQL | High | 0.14 |
SQL Injection - Oracle - Time Based | High | 0.06 |
Most common Medium Risk security issues in the last 30 days
Issue Type | Category | Percentage |
---|---|---|
Absence of Anti-CSRF Tokens | Medium | 6.24 |
Cross-Domain Misconfiguration | Medium | 5.33 |
Content Security Policy (CSP) Header Not Set | Medium | 2.94 |
CSP: Wildcard Directive | Medium | 2.32 |
CSP: style-src unsafe-inline | Medium | 2.22 |
Most common Low Risk security issues in the last 30 days
Issue Type | Category | Percentage |
---|---|---|
Strict-Transport-Security Header Not Set | Low | 7.20 |
Cross-Domain JavaScript Source File Inclusion | Low | 4.23 |
X-Content-Type-Options Header Missing | Low | 3.00 |
Strict-Transport-Security Multiple Header Entries (Non-compliant with Spec) | Low | 2.44 |
Server Leaks Version Information via "Server" HTTP Response Header Field | Low | 2.12 |
Most common Info Risk security issues in the last 30 days
Issue Type | Category | Percentage |
---|---|---|
Retrieved from Cache | Informational | 31.99 |
Information Disclosure - Suspicious Comments | Informational | 10.07 |
Re-examine Cache-control Directives | Informational | 3.41 |
User Controllable HTML Element Attribute (Potential XSS) | Informational | 1.38 |
Loosely Scoped Cookie | Informational | 0.67 |